web-browsing

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill fetches and reads content from arbitrary public URLs using WebFetch and the cursor-browser-extension (browser_navigate → browser_snapshot), so the agent ingests untrusted third-party web content that could contain indirect prompt injection.