xcrawl

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly fetches and returns content from arbitrary public URLs via the XCrawl Scrape API (POST https://run.xcrawl.com/v1/scrape with a url field) and the workflow/Output Contract in SKILL.md requires returning raw API responses (page HTML/markdown/json), meaning untrusted third-party page content is ingested and read as part of the agent's workflow and could influence subsequent actions.