using-web-scraping

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md (see the "Agent prompt" and the Node.js example) explicitly instructs the agent to use DuckDuckGo to find and then open arbitrary result pages in headless Chrome to extract title/meta/main text/canonical URL, meaning it fetches and ingests untrusted public web content that could contain malicious/embedded instructions.