langchain-core-workflow-b

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly defines and uses web-search tools in "Step 1: Define Tools" (the search_web tool described as "Search the web for information") and in "Advanced Patterns" (async_search using aiohttp), which instruct the agent to fetch and read open/public web content that could contain untrusted, user-generated instructions influencing agent decisions.