page-monitoring

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill fetches and parses arbitrary public web content and social media (e.g., requests.get usage in PageMonitor._get_page_hash, RSSGenerator.add_from_page scraping arbitrary URLs, and the TwitterArchiver using twarc/RSS-Bridge) and then reads/uses that content in change-detection and alert workflows, exposing the agent to untrusted, user-generated third-party content that could carry indirect prompt injection.