firecrawl-lead-research

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's SKILL.md explicitly directs the agent to "Use Firecrawl search and scrape to gather" company websites, recent news, public person profiles and other public URLs (see "Firecrawl Collection Plan" and "Final Deliverable" Sources), which requires ingesting untrusted third-party web content that can influence follow-up actions.