Witty Assistant

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly uses web_search to fetch and synthesize arbitrary web content as part of its required workflow (see SKILL.md Tool Integration and Task Execution where it instructs using web_search, and scripts/research_helper.py which recommends "web_search for tutorials" and ingests/synthesizes external results), so untrusted third‑party pages can materially influence agent actions.