byted-byteplus-infoquest-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's scripts (scripts/extract.py and scripts/search.py, documented in SKILL.md) call BytePlus InfoQuest endpoints and ingest content from arbitrary public URLs and web search results (e.g., user-supplied URLs posted to reader.infoquest.bytepluses.com and queries to search.infoquest.bytepluses.com), so untrusted third‑party page content is fetched and returned for the agent to read and act on.