webflow-automation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). This skill explicitly fetches and interprets content from external Webflow sites (e.g., WEBFLOW_GET_PAGE_DOM and the LIST_PAGES / LIST_COLLECTIONS flows in SKILL.md), meaning the agent will ingest untrusted third‑party page/CMS DOM and content that can influence subsequent actions.