performing-dns-enumeration-and-zone-transfer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly fetches and parses DNS and TXT records, attempts AXFR zone transfers, and enumerates subdomains from arbitrary public domains using tools/dnspython (see SKILL.md examples and scripts/agent.py), so untrusted, attacker-controlled DNS content is read and used to drive reporting and further probes.