seo-dataforseo

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly calls the DataForSEO API (see "Each function call hits the DataForSEO API" and the credentials link https://app.dataforseo.com/api-access) to fetch SERP/trend/competitor data from public websites, saves those JSON results, and then reads and summarizes them—meaning untrusted third-party content from the open web is ingested and can directly influence recommendations and subsequent actions.