web-scraping

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md explicitly shows scraping arbitrary public websites and social media (e.g., RequestsScraper.fetch uses requests.get(url), PlaywrightScraper.fetch calls page.goto(url), and dedicated YouTube/Instagram/TikTok scrapers using yt-dlp and instaloader), so the agent ingests untrusted, user-generated third‑party content as part of its workflow and that content could materially influence subsequent actions.