scrapfly-scraper

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md shows calls like client.scrape(ScrapeConfig(url=...)) that fetch arbitrary public URLs and return response.content/selector (and expose extraction_prompt/extraction_model and js_scenario browser actions), so untrusted third‑party web content can be ingested and materially influence extraction and subsequent actions.