crewai

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly gives agents web-access tools (e.g., SerperDevTool and ScrapeWebsiteTool in the "Tools" and "Basic Concepts"/"Example: Research Team" sections) and uses them in required agent/task workflows to fetch and interpret public web content, which is untrusted and can materially influence agent decisions.