web-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill executes scripts/scripts/search.py that use the ddgs/duckduckgo_search DDGS.text, .news, and .images calls to fetch arbitrary DuckDuckGo search results (open web pages, news, images) and returns those third‑party results to the agent for parsing, exposing it to untrusted user-generated or public web content that could enable indirect prompt injection.