firecrawl-scraper

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill explicitly fetches and ingests arbitrary public web content (e.g., via /v2/scrape, /v2/crawl, /search and the autonomous /agent endpoints shown in SKILL.md and README) so the agent will read and act on untrusted third‑party pages that could contain instructions or malicious prompts.