exa-tool

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md and executable wrappers (bin/exa-search, bin/exa-web-search) call the Exa MCP server (https://mcp.exa.ai/mcp) to run tools like web_search_exa and crawling_exa that fetch public webpages and search results which the agent ingests and uses to drive summaries/actions, exposing it to untrusted third‑party content that could contain indirect prompt injections.