cookie-policy-malik-taiar

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow in SKILL.md (Step 2 "Research on the site" and the Reference Resources table requiring WebFetch of CNIL URLs, plus Step 4's benchmark of 3–5 public cookie policies) explicitly instructs the agent to visit and ingest content from client-provided and public websites, so untrusted third‑party web content can be read and influence drafting decisions.