perplexity-search

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The prompt includes explicit examples that embed an OpenRouter API key verbatim (both as an env var placeholder and—importantly—as a command-line argument like --api-key sk-or-v1-your-key-here), which is an insecure pattern that would require or encourage the LLM to handle/output secret values directly.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). scripts/perplexity_search.py explicitly performs real-time web searches via Perplexity models through OpenRouter (openrouter.ai) and returns web‑grounded answers with citations, meaning the agent ingests and interprets arbitrary public third‑party web content (including user-generated/untrusted pages).