seo-page

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly fetches and renders arbitrary user-provided public URLs (Phase 1a: "Fetch the page (WebFetch)" with a CSR fallback to /browse) and also WebFetches competitor pages (Phase 5), and it reads and interprets that third‑party content to drive scoring, decisions, and follow-up actions, exposing the agent to untrusted external content that could carry indirect prompt injections.