web-application-mapping

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly directs subagents to crawl and fetch content from arbitrary web targets (e.g., Phase 1: "Execute comprehensive active scanning using ffuf, gobuster, nikto, and ZAP spider" and Phase 3: "Download and analyze JavaScript files" / headless browser automation), so it will ingest and interpret untrusted public web content.