web-performance-audit

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's PerformanceAudit.measure_performance(url) workflow explicitly calls run_lighthouse_desktop(url), run_lighthouse_mobile(url), get_field_data(url), run_synthetic_tests(url), and compare_to_competitors(url), which require loading and ingesting arbitrary public websites/URLs (untrusted third-party content) to derive metrics that drive recommendations and actions.