visual-ralph

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Workflow (step 2 "For live URL requests" and related handoff instructions) requires capturing and using a live source URL and its baseline screenshot as the approved reference, meaning the agent will fetch and interpret arbitrary public website content which can materially drive implementation and iteration.