scrape-webpage

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The analyze-webpage skill explicitly navigates to and scrapes arbitrary public URLs (see scripts/analyze-webpage.js where it calls page.goto(url), captures network responses, and extracts cleaned HTML, metadata, and images from the target webpage), which ingests untrusted third‑party/user-generated content that the agent reads and processes.