seo-drift

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly fetches and parses arbitrary public web pages via scripts/fetch_page.py as part of the required baseline and compare workflows (SKILL.md), and those untrusted HTML/JSON-LD/OpenGraph contents directly drive comparison rules, severity classifications, and follow-up actions—allowing third‑party page content to materially influence agent behavior.