dataforseo-tool

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly ingests public third-party content (e.g., SERP and Maps results and user reviews) via endpoints like serp/google/organic/live, serp/google/maps/live, and business_data/google/reviews in SKILL.md, and it requires the agent to parse and act on that data (local-pack detection, competitor identification, review analysis), so untrusted web/user-generated content can influence decisions.