migrate-to-nextjs

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill instructs the agent to capture and parse arbitrary legacy site pages via ir_capture (discovering routes, reading sitemap.xml, DOM, computed styles, animations and internal links) and to download font files from fonts[].src URLs — i.e., it ingests and interprets user-provided or public web content/URLs as part of its workflow, which can carry untrusted third-party data.