spider-cli-extraction

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill runs the Spider CLI to crawl/scrape arbitrary user-supplied URLs (see SKILL.md quick commands and scripts/spider_cli_helper.sh which accept a and call spider scrape/ crawl --output-html), meaning it ingests untrusted public web content that could contain instructions influencing agent behavior.