cloudflare-agents

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill includes a Browser Rendering / Puppeteer scraping feature (see templates/browser-agent.ts and the "Browse the Web" section with /scrape and /batch-scrape endpoints) that fetches arbitrary public URLs and passes extracted HTML/text to the agent/AI, exposing it to untrusted third-party web content.