burpsuite-project-parser

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly reads response headers and bodies from Burp Suite project files (.burp) via the burp-search.sh wrapper and the burpsuite-project-file-parser (e.g., proxyHistory.response.body, responseBody searches), which contain captured HTTP responses from arbitrary public websites and thus ingest untrusted third‑party content.