geo-ai-plugin-builder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow asks for and uses public URLs and content (see "Information to ask from the user" in SKILL.md requesting "URLs for core content, tools, or APIs") and the bundled script example (scripts/plugin_blueprint_generator.py) defines a tool parameter "website_url" described as "Public URL of the landing page to analyze", indicating the agent will ingest and interpret arbitrary third-party web content to drive plugin design and tool decisions.