devops

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's browser-rendering references include Puppeteer-based scrapers and a crawler that navigate to public sites (e.g., references/browser-rendering.md: the "AI-Powered Web Scraper" uses page.goto('https://news.ycombinator.com') and passes page.content() to an AI, and the queue crawler visits message.body.url), meaning the agent ingests and interprets untrusted, user-generated third‑party web content.