page-cro

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly accepts and instructs analysis of user-provided live page URLs and Clarity CSVs (see "When the user shares a page URL" and "Optional inputs: Screenshots, page URLs, Clarity CSVs") and requires the agent to read/interpret that third‑party page content as part of its audit, which can materially influence recommendations and follow-up actions.