schema-markup

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required "Mode 1: Audit Existing Markup" step explicitly instructs the agent to "Extract all JSON-LD blocks from the page source," which requires fetching and parsing arbitrary public web pages (third‑party/untrusted content) and using that content to drive validation, scoring, and remediation decisions.