scrape-docs

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill's SKILL.md explicitly instructs the agent to "Scrape and extract documentation from: $ARGUMENTS" using the Firecrawl MCP (Strategy step 1), meaning it fetches and ingests arbitrary external URLs (untrusted third-party web content) that the agent must read and act on, enabling indirect prompt injection.