seo-technical

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly requires a site URL and "access to (at minimum) view the rendered HTML, robots.txt, and sitemap" and the workflow step "Crawl. Use a crawler to enumerate URLs" — meaning the agent fetches and interprets content from arbitrary public websites (untrusted third-party pages) that can materially influence audit actions.