performance-reporter

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Data Sources and Instructions explicitly state it "automatically aggregate[s]" data from third‑party services (e.g., "~~SEO tool", "~~AI monitor", "~~link database", "~~search console") and uses those external/public results to generate analyses and recommendations, so the agent will ingest and act on untrusted public web-derived content.