brave-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill uses the Brave Search API (search.js) and the content extractor (search.js's fetchPageContent and content.js) to fetch and parse arbitrary public web pages/URLs and search results snippets, so it directly ingests untrusted third-party web content that could contain indirect prompt injection.