lazyweb-design-brainstorm

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md explicitly instructs the agent to browse and capture arbitrary public websites (see "Web Research + Live Screenshot Capture") and to download/interpret those pages and images (see "Download References" and the rules to read visionDescription before using screenshots), so the agent ingests untrusted third‑party web content (Awwwards/other URLs) that is then used to drive brainstorming decisions and next actions.