web-navigation-strategies

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill explicitly directs the agent to navigate and scrape arbitrary public websites (e.g., mcp_playwright.navigate(url) and site-specific examples like Reddit, Twitter/X, Medium, Naver blogs and public news sites) and to extract posts/comments/metadata, meaning it ingests untrusted, user-generated third-party content that could carry indirect prompt injections.