web-design-reviewer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly navigates to and inspects arbitrary target URLs provided by the user (Step 1.1 URL Confirmation and Step 2.1 Page Traversal) — including production/public websites — and retrieves DOM/screenshots for analysis, which exposes the agent to untrusted third-party web content.