seo-audit

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly instructs running "SEO and GEO audits on URLs" and the report format lists "Page: [URL or filename]" while the Phase 1/2 checks require reading title/meta/H1/body and external links, so the agent is expected to fetch and interpret arbitrary public web pages (untrusted third-party content) which will directly drive audit decisions.