screenshot-analyzer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly ingests and analyzes user-provided screenshot files ("Phase 1: Read the screenshot file(s) provided by the user") and runs multiple agents that parse and interpret those images, so arbitrary/untrusted third‑party content in screenshots could carry instructions enabling indirect prompt injection.