firecrawl-scrape

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill's SKILL.md explicitly instructs scraping arbitrary URLs (including JS-rendered SPAs) and returning LLM-optimized markdown (see "Scrape one or more URLs" and the Quick start examples), so the agent fetches and ingests untrusted public web content provided via URLs.