kwcode-local-coding-agent

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill exposes the agent to untrusted third‑party web content via its documented /search command (Key Commands → ">/search ") which uses public search engines (falls back to DuckDuckGo or SearXNG) so search results from arbitrary public websites can be fetched and used inside the REPL workflow.