zenscrape

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md shows the integration with Zenscrape (a web-scraping API) and explicitly documents "Scrape" actions and the "Proxy requests" flow via Membrane to fetch arbitrary website content, meaning the agent can ingest untrusted public web pages that could contain instructions.