web-crawl

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md and scripts/crawl.py explicitly implement a WebIntentType.CRAWL that passes user-provided URLs/domains to WebIntelligenceRouter.execute to crawl and collect pages from external websites, so the agent will fetch and ingest untrusted public web content that could contain instructions.