security-audit

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to run automated scanners and accept a "target URL" (SKILL.md Workflow step 3 and Usage), which requires fetching and interpreting content from arbitrary public/untrusted web targets and using those results to drive audit decisions and remediation actions.