extract-site

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.95). The required runtime workflow “Website Extraction” takes a user-supplied public URL and performs website scraping/screenshot/DevTools inspection to extract CSS/visual data, which is outsider-authored free text/content from the fetched webpage(s) that is then ingested into the agent’s LLM context for token/document generation.