technical-seo-checker

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and parses arbitrary public site content (robots.txt, sitemap.xml, page HTML, and sampled URLs) as part of its workflow — see SKILL.md "Data Sources" and "Instructions" (security boundary) and references/bulk-audit-playbook.md which accepts sitemap URLs and URL lists — so untrusted third‑party content can materially influence audit decisions and tool behavior.