tavily-web

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly performs web search, content extraction, and website crawling via the Tavily API and states it extracts content from URLs (see the Overview and "When to Use" lines), so the agent will ingest arbitrary public web pages and user-generated content that could contain indirect prompt injections.