isitagentready

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly asks for a production URL and directs a browser-first rendered pass ({{ skill:agent-browser }}, per SKILL.md and references/runtime-and-browser.md) and also fetches live scan JSON via scripts/scan_site.py from isitagentready.com, ingesting arbitrary public-site pages and .well-known/.json artifacts as authoritative runtime evidence that directly drive audit decisions — exposing the agent to untrusted third-party content that could carry indirect prompt-injection payloads.