pentest-hacktricks-finder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md explicitly directs the agent to search, fetch, and extract payloads/steps from the public HackTricks wiki (https://book.hacktricks.wiki/en/), which is untrusted third‑party content that can materially influence the agent's actions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill fetches content at runtime from https://book.hacktricks.wiki/en/ and injects extracted "payloads_or_steps" into the agent's output, meaning remote content directly controls the agent's instructions.