conducting-external-reconnaissance-with-osint

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and parses untrusted public web content (crt.sh, https://dns.google, Shodan, GitHub API, haveibeenpwned, paste sites/Gists and arbitrary target websites) as shown in SKILL.md and scripts/agent.py and then uses those results to drive analysis and reporting, so third‑party content could materially influence agent behavior and enable indirect prompt injection.