multi-search
Warn
Audited by Snyk on Feb 20, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 1.00). 该技能在“阶段3:并行深度检索”明确要求自动选择并使用 WebSearch 和 WebFetch 来发现并获取网络内容(并且“依赖”一节列明 WebSearch/WebFetch),表明代理会读取来自公开第三方网站的未受信任内容并将其用于检索结果与后续决策,存在间接提示注入风险。
Audit Metadata