seo-audit-report

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). SKILL.md explicitly tells the agent/developer to run web/exa searches (e.g., "Use exa (or web search)" and the Tool checks: "run an exa search such as exa \"vite react sql.js setup\"") to gather up-to-date commands, which would ingest untrusted public web content that could change tool usage or next actions.