subdomain-enumeration

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and parses public, untrusted third‑party content—crt.sh JSON responses, search engine dork results, and passive DNS services (VirusTotal, SecurityTrails, DNSDumpster)—and uses those results to drive enumeration, deduplication, and naming-pattern decisions, so content from those sources could materially influence agent behavior.