aeo-visibility

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly sends queries to external AI answer engines (ChatGPT/Claude/Gemini/Perplexity) in src/engines.js (and notes using web_search in src/research.js / SKILL.md), ingests those untrusted third‑party responses and feeds them into src/analyzer.js (analyzeSingleResponse) for automated analysis and reporting, so external content can materially influence subsequent decisions and outputs.