seo-content-production

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly instructs the agent to ingest open-web data via the seomachine/DataForSEO calls (e.g., dfs.get_serp_data and get_keyword_ideas in Phase 1) and to "compile sources" including "External Research" and public sources (Phase 3 / references/comparison-keywords.md mentions Reddit/serp data), so untrusted third‑party content is read and used to decide whether and how to proceed.