web-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's main script (scripts/search.py) performs live searches against public search backends (DEFAULT_DUCKDUCKGO_API_URL for DuckDuckGo and user-configured SearXNG instances) and ingests/prints result titles, bodies and URLs from arbitrary public websites (StackOverflow, news sites, gists, etc.), so untrusted third‑party content is fetched and presented for the agent to read and potentially influence follow-up actions.