fetch-brand-assets

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's Step 2 research and WebFetch workflow explicitly fetches and parses public third‑party web pages (brand press pages and third‑party aggregators listed in references/trusted-sources.md such as Wikimedia Commons, Clearbit, SimpleIcons, SVGPorn, WorldVectorLogo, etc.) to extract assets and usage guidelines that directly influence which files to download and how to process them, creating an opportunity for indirect prompt injection.