gemini-deepresearch

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Deep Research agent explicitly uses the Gemini Deep Research agent which "has access to the public internet using the google_search and url_context tool" (docs/guide.md) and performs autonomous searching/reading as part of its required workflow, so it ingests untrusted public web content that can materially influence its planning and outputs.