google-flights

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly automates browsing and snapshotting Google Flights pages (https://www.google.com/travel/flights) and extracting/clicking booking provider links as part of its required workflow (see SKILL.md "Fast Path: URL-Based Search" and "Booking Options Handoff" plus references/interaction-patterns.md), so it ingests untrusted public web content which can materially influence subsequent clicks and decisions.