byted-web-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill (SKILL.md and scripts/web_search.py) explicitly calls the Volcengine web-search API (e.g., https://open.feedcoopapi.com/search_api/web_search and https://mercury.volcengineapi.com) to fetch public web/image results including Title, Url, Snippet/Summary/Content and the README instructs the agent to base answers on those search results, so untrusted third-party web content can influence the agent's decisions.