image-fetcher

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md explicitly uses "Web Image Search" and "Live Screenshot" (Playwright) to fetch images and navigate arbitrary URLs, meaning the agent ingests open web content and screenshots from untrusted third-party pages which could contain instructions that influence its actions.