alttextai

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly lists a "Scrape Page for Images" action (and describes running Membrane actions to fetch content), which indicates the agent will fetch and ingest public web pages/untrusted third-party content that can directly influence subsequent actions like generating alt text.