schema-markup-generator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md "Data Sources" section explicitly says "With ~~web crawler connected: Automatically crawl and extract page content (visible text, headings, lists, tables), existing schema markup, page metadata, and structured content elements"—meaning the agent ingests arbitrary public web pages (untrusted third-party content) and uses that extracted content to generate schema and drive implementation decisions.