web-extract

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's scripts/extract.py build a WebIntent from an arbitrary "url" or "query" and call WebIntelligenceRouter.execute(request), which fetches and ingests public web content for structured extraction, meaning untrusted third‑party webpages could supply instructions that influence outputs and subsequent behavior.