peekaboo

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly shows flows that open arbitrary webpages (e.g., peekaboo app launch "Safari" --open https://example.com) and then capture/analyze those windows (e.g., peekaboo image --app Safari --window-title "Dashboard" --analyze "Summarize KPIs"), which means the agent will ingest and act on untrusted public web content rendered in third‑party apps.