alamy-downloader

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md "How It Will Work" steps require the extension to read and detect content on Alamy web pages (search results, asset detail pages, lightboxes and purchase/history pages), which are public, user‑contributed site pages that the agent must interpret to decide available downloads and actions, thus exposing it to untrusted third‑party content.