web-archive-analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly queries the public Wayback Machine CDX API and fetches archived pages via URLs like https://web.archive.org/web/{timestamp}/{original_url} (see "query_cdx_api" and "fetch_archived_content") and then parses/interprets those archived HTML pages ("extract_historical_tech" / "compare_snapshots") to drive technology-detection and migration decisions, which exposes the agent to untrusted third-party content that could carry instructions influencing its actions.