company-research

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). SKILL.md explicitly requires using web_search_advanced_exa to fetch and process public web results (company homepages, news, tweets, public LinkedIn profiles, etc.), so the agent ingests untrusted third‑party content from the open web that can materially influence its outputs and actions.