seo-local

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). SKILL.md explicitly instructs the agent to use the "firecrawl" tool to scrape competitor Google Business Profile pages, local SERPs, and public directory sites (e.g., Yelp, Facebook, Apple Maps, etc.), which are untrusted, user-generated third-party sources and whose content is then analyzed to drive post generation and audit decisions.