analyze-website

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly takes "URL(s) to analyze" and instructs the agent to "Fetch lightweight evidence first" (Fast-Path Workflow step 3) and to use WDIO navigation to capture page structure (Auth-Gated Discovery), so it will fetch and interpret arbitrary public web pages and their user-generated/untrusted content as part of its workflow, which could materially influence subsequent analysis and actions.