screenshot-feature-extractor

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly ingests and analyzes arbitrary user-supplied screenshot files ("Phase 1: Read the screenshot file(s) provided by the user"), which are untrusted third‑party content the agents must read and could contain malicious/instructional text enabling indirect prompt injection.