landing-page-factory-orchestrator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This orchestrator explicitly fetches and ingests arbitrary public webpages via the extraction step (see scripts/run-pipeline.py invoking firecrawl-extract.sh or basic-extract.sh with a user-provided --url, and SKILL.md extraction policy), so untrusted third‑party content can be read and used to drive downstream decisions and tool actions.