langsmith-fetch

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill directly fetches and parses execution traces and threads from LangSmith Studio using the langsmith-fetch CLI (e.g., "langsmith-fetch traces", "langsmith-fetch threads"), which are third-party, user-generated/untrusted artifacts that the agent reads and analyzes, exposing it to indirect prompt-injection via those traces/threads.