seo-audit

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). SKILL.md explicitly instructs the agent to fetch and render arbitrary public site pages (e.g., "Schema Markup Detection Limitation" — use Browser tool and run document.querySelectorAll, and "Performance" — "Check with web_fetch or browser tool") and references the web-browser tool, so the agent will ingest untrusted third‑party web content that can materially influence its audit decisions.