Shodan Reconnaissance and Pentesting

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly fetches and parses public, untrusted internet-host content via Shodan (e.g., sub-skills/8-rest-api-usage.md shows curl to https://api.shodan.io, sub-skills/3-search-queries.md and sub-skills/4-search-filters-reference.md include filters like http.html and http.title and has_screenshot), and the workflow and examples require the agent to read and act on that third-party content to guide recon/scan decisions, so it can enable indirect prompt injection.