seo-baseline

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and inspects arbitrary public web pages and resources (e.g., curl -s "$URL", mcp__claude-in-chrome__navigate to URL, and checks /sitemap.xml and /robots.txt) and therefore reads untrusted third-party content (public websites) as part of its workflow, creating a clear avenue for indirect prompt injection.