outscraper

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md explicitly uses Outscraper to scrape open/public third‑party sources (e.g., "Reviews", "YouTube Results" -> "Comments", "Twitter Results" -> "Tweet Details", etc.) and shows workflow steps to run actions and proxy requests (membrane action run / membrane request) and to parse/summarize that scraped content, so untrusted user‑generated content from the web would be ingested and could influence the agent's decisions.