lazyweb-quick-references

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's workflow (see "4. Web Research + Live Screenshot Capture" and the browse/download commands like $LB goto "https://example.com/page", $LB screenshot "...", and curl -sL "{imageUrl}" -o "...") explicitly fetches and screenshots arbitrary public web pages and downloads images from external URLs, so the agent ingests untrusted third‑party content that can influence subsequent tool use and decisions.