dataforseo

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill makes API calls to DataForSEO endpoints that ingest public, user-generated web content—e.g., serp_google_organic (Google SERP), content_search (brand mentions), business_google_reviews (Google reviews), backlinks_list, and onpage_instant_pages—so the agent is expected to read/interpret untrusted third‑party content that could carry indirect prompt injection.