amazon-scraper

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill (SKILL.md) and its runtime handlers (assets/amazon_handler.js, assets/main_handler.js, assets/youtube_handler.js) explicitly fetch and scrape arbitrary public web pages and user-supplied URLs (Amazon pages, YouTube timedtext/transcripts, and generic sites), ingesting document.body.innerText and API responses that the agent reads and uses to drive parsing, decisions, and follow-up actions, so untrusted third-party content can influence tool behavior.