perplexity

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md and README explicitly call Perplexity Search and Perplexity Ask (e.g., mcp__perplexity__perplexity_search and perplexity_ask) to fetch and synthesize web search results/URLs from open public sites, so untrusted third‑party web content can be ingested and influence agent decisions.