basedagents

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md shows it fetches and consumes public, user-generated content from the BasedAgents registry and APIs (basedagents.ai and api.basedagents.ai) — e.g., agent profiles, task listings, messages, and scanned GitHub/npm/PyPI package data via tools like get_agent, browse_tasks, read_message and scan — which the agent is expected to read and which could materially influence its actions.