on-page-seo-auditor

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs the agent to "Audit the on-page SEO of [URL]" and to read page elements (title, meta description, headers, body content, images, internal links) from an arbitrary/public URL, meaning the agent will ingest and act on untrusted third‑party webpage content that could carry indirect prompt injection.