paw-mkt-seo

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Research Mode (./references/capability-research.md) and the SKILL.md response protocol explicitly instruct the agent to use agent-browser/WebFetch to open and scrape public third‑party sites (e.g., Google SERP, SimilarWeb, PageSpeed Insights, AnswerThePublic) and extract their text/snapshots to drive SEO analysis and recommendations, meaning untrusted web content is read and can materially influence tool use and decisions.