schema-markup-generator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's Data Sources section explicitly states "With web crawler connected: Automatically crawl and extract page content (visible text, headings, lists, tables), existing schema markup, page metadata, and structured content elements" — showing it fetches and ingests arbitrary public web content which the agent is expected to read and use to generate schema, so untrusted third‑party page content could influence its actions.