langchain-agents

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's RAG "Load" stage and "Document Loaders" explicitly list ingesting web pages (WebBaseLoader, AsyncChromium), GitHub, and public PDFs/web content, so the agent will read and process arbitrary third‑party user-generated or public web content that could carry indirect prompt injection.