scrape
Warn
Audited by Snyk on Feb 16, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 1.00). The scripts/scrape.sh sends arbitrary user-provided URLs to Bright Data's API and returns the scraped webpage as markdown, thus ingesting untrusted public web content (e.g., news sites, forums, product pages) that the agent would read and could contain indirect prompt injection.
Audit Metadata