google_search_console-automation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill calls Google Search Console tools (notably GOOGLE_SEARCH_CONSOLE_SEARCH_ANALYTICS_QUERY and sitemap fetching like GOOGLE_SEARCH_CONSOLE_LIST_SITEMAPS/GET_SITEMAP) which ingest and surface user-generated, public search queries and publicly hosted sitemap content from third-party sources that the agent is expected to read and interpret, creating a risk of indirect prompt injection.