javascript-sdk

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill enables agents to fetch and ingest untrusted third‑party content (e.g., the RAG pattern using the "tavily/search-assistant@latest" search tool, internalTools().webSearch(true), and the File Handling "Use remote URLs directly" examples where arbitrary https:// URLs are passed and processed), so the agent will read/interpret content from public websites and user-provided URLs.