target-serp

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md Step 1 explicitly instructs the agent to "Search the keyword" and document which domains/holders (e.g., competitor.com) and to "Collect PAA questions," and the Pro Tip links point to public tools (seojuice.com), which requires fetching and interpreting public SERP and website content (untrusted third‑party) that can materially influence the agent's actions.