ga4-analytics

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill queries public Google Search Console and Indexing APIs (e.g., getTopQueries / getTopPages / inspectUrl and related searchConsole functions) and auto-saves those results which the workflow's "Summarize" phase reads and interprets — Search Console rows and inspected page data originate from public, user-generated web/search queries and therefore represent untrusted third‑party content that could carry indirect prompt injection.