performing-web-application-vulnerability-triage

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required workflow and code explicitly ingest scanner outputs from open/public sources (SKILL.md prerequisites/workflows: "Import DAST scan results (ZAP, Burp, Nikto)" and scripts/agent.py's ingest_json_report), and those scanner JSONs contain untrusted page/request/response evidence and URLs that the agent reads and uses to drive triage/prioritization, so third-party content can materially influence decisions.