geo

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly fetches and ingests public website content (e.g., "Fetch homepage HTML (curl or WebFetch)" and commands like /geo audit <url>, /geo page <url>) to analyze and drive audits, recommendations, and report generation, meaning untrusted third-party pages can influence agent actions.