web-scraping-python

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs fetching and parsing open/public third-party webpages and APIs (e.g., requests.get/session.get in SKILL.md examples, Selenium driver.get in Chapter 11 guidance, and the new_scraper.py template which takes arbitrary target URLs and parses their HTML), and it uses that content to drive crawling, parsing, and follow-up actions—so untrusted web content can materially influence behavior.