n8n-architect

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly enables AI Agent nodes to call external MCP servers that perform web searches and scraping (notably Brave Search and Puppeteer listed in skills/n8n-mcp-tools-expert/references/mcp-servers-compatibles.md and the AI Agent examples in skills/n8n-mcp-tools-expert/SKILL.md), meaning the agent will ingest untrusted public/user-generated web content as part of its workflow.