pentest-recon-attack-surface

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and ingests open web content as part of its workflow (see references/tools.md: subfinder_enumerate using crtsh/virustotal/shodan/censys, httpx_probe targets, playwright_authenticated_crawl, and ffuf_discover), so it will read and interpret responses from public/untrusted third-party sites and thus is exposed to indirect prompt injection risk.