exa-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's search.cjs and crawl.cjs call the Exa API to fetch and print result.text for arbitrary web search results and to crawl user-supplied URLs (see SKILL.md Quick Start and crawl.cjs), which exposes the agent to untrusted public web content that could contain executable instructions.