scrape-webpage

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's analyze-webpage.js explicitly navigates to arbitrary external URLs (e.g., "node .claude/skills/scrape-webpage/scripts/analyze-webpage.js " described in SKILL.md and resources/web-page-analysis.md) and downloads/extracts HTML, metadata, and images from public webpages which are then passed to downstream steps (cleaned.html, metadata.json) — meaning untrusted third‑party content is ingested and used to drive subsequent processing and decisions.