webflow-migration-deep-dive

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md explicitly fetches content from arbitrary WordPress sites in "Step 3: WordPress Migration" (fetchWordPressPosts using wpUrl) and then transforms and bulk-imports that untrusted, user-generated content into Webflow (bulkImport/publish), so third-party content is ingested and directly drives create/publish actions.