geo-content-optimizer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly accepts "[content or URL]" (SKILL.md Quick Start) and its workflow/phase checks (e.g., Phase 1 "incognito, location-matched" SERP checks, competitor-analysis, and use of ~~AI monitor / ~~SEO tool in Data Sources) require fetching and analyzing public third-party webpages and SERP results, so it ingests untrusted external content that can influence decisions and next actions.