seo-content-audit

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md explicitly instructs the agent to crawl and WebFetch arbitrary public websites (Phase 2 site-content-catalog on the target domain, Phase 4 competitor cataloging, and Phase 6 brand-voice-extractor WebFetch of pages) and to ingest third-party data sources (Semrush/Ahrefs/Google SERP via Apify), meaning untrusted user-generated or public web content will be read and used to drive analysis and recommendations.