ai-sdk-development

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md Provider Tools section explicitly shows agent tools like WebSearch and WebFetch (e.g., "new WebFetch", "(new WebSearch)->max(5)->allow([...])") which fetch public web pages/search results that the agent is expected to read and can materially influence its actions, exposing it to untrusted third‑party content.