web-fetch

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's SKILL.md and scripts/fetch.sh explicitly fetch and extract content from arbitrary HTTP/HTTPS URLs (via curl), returning page text for the agent to read and use, which exposes it to untrusted public web content that could contain indirect prompt injections.