gemini-text

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly enables "Google Search grounding" in SKILL.md (Workflow 5) and the script scripts/generate.py sets config.tools = [types.Tool(google_search=types.GoogleSearch())], which causes the agent to fetch and ingest open-web search results (untrusted third-party URLs) that are used to influence generated responses.