search-x

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches and ingests public, user-generated tweets from X/Twitter (via xAI Grok's /v1/responses with the x_search tool in scripts/search.js or the X API /2/tweets/search/recent) and the agent reads and formats those tweets as part of its workflow, so untrusted third‑party content can influence outputs and behavior.