internal-linking-optimizer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly states under "Data Sources" and in the "How to Use" examples that Claude can perform a full site crawl via a web crawler or accept a sitemap/URL (e.g., "Analyze internal linking structure for [domain/sitemap]"), which means the agent will fetch and interpret content from open/public websites as part of its workflow and that content could materially influence decisions and tool actions.