xcrawl-map

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's workflow (step 2: execute POST https://run.xcrawl.com/v1/map with a user-supplied url) and its Output Contract requiring returning the raw upstream API response means it ingests discovered links/content from arbitrary public websites (untrusted third-party sources) that can directly drive follow-up crawl/planning actions.