tools-ui

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Agent example and UI components explicitly include and render a "search_web" tool (see the Agent config tools array and the ToolResult/ToolCall examples), which implies fetching and displaying open web search results from untrusted public sources and thus exposes the agent to third-party content that could contain indirect prompt injections.