Detects inbound messages from Square's marketing domain (squaremktg.com) that include a QR code in the message screenshot. The beta QR-code scanner analyzes the image to extract the embedded URL and determines whether scanning the QR code would redirect to self-service creation platforms or free file-hosting services, excluding Square's own hosting domain (square.site). The rule triggers when the scanned URL's root_domain or domain matches domains listed in the rule as self-service platforms or free file hosts. It relies on sender verification, QR-code analysis, URL/domain checks, and computer-vision to identify potential credential-phishing attempts delivered via QR-coded links in marketing content. The rule is labeled as beta and may change without notice; it should not be relied on as a formally released feature until officially supported. This rule helps detect credential-phishing vectors where attackers embed malicious links behind a QR code in marketing communications.