google-news-api-skill

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill explicitly calls the BrowserAct Google News workflow to fetch and return Google News article content (see SKILL.md and scripts/google_news_api.py), so untrusted public web content is ingested and presented for the agent to process, which could materially influence its decisions and enable indirect prompt injection.