seo-schema

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly requires scanning page source and analyzing content from URLs (see "Detection: Scan page source for JSON-LD" and "Error Handling: URL unreachable"), meaning the agent fetches and interprets content from arbitrary public webpages and thus can be exposed to untrusted third-party content that could carry indirect prompt injections.