crewai-multi-agent

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md and references/tools.md explicitly show agents assigned web-search and scraping tools (e.g., SerperDevTool and ScrapeWebsiteTool and crew.py example where researcher uses SerperDevTool) which fetch and ingest public/untrusted web content that is then used as input to crew.kickoff/flow steps, so third‑party pages can materially influence agent actions.