generate-import-html

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly consumes scraped page content (cleaned.html) and metadata.json produced by the scrape-webpage / analyze-webpage.js step (see SKILL.md prerequisites and Metadata Extraction), and the workflow requires the agent to read and act on that third-party page content to decide metadata and HTML generation, so untrusted webpage content can materially influence actions.