schema-markup-generator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md explicitly states under "Data Sources" that "With web crawler connected: Automatically crawl and extract page content (visible text, headings, lists, tables), existing schema markup..." and the workflow requires using page URLs/content to determine schema and generate JSON‑LD, so the agent would ingest untrusted public web pages whose content could materially influence schema decisions and actions.