audit

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The audit workflow explicitly requires fetching and reviewing public site content (e.g., robots.txt, XML sitemap, page HTML/content, backlinks and competitor pages for a user-provided domain and external tools like seojuice.com), so the agent would ingest untrusted third-party web content that can change its actions and recommendations.