searxng

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's script (scripts/searxng.py) issues HTTP GETs to a configured SEARXNG_URL (f"{SEARXNG_URL}/search") and directly displays returned result "content" snippets, and the README/SKILL.md explicitly reference using public SearXNG instances, which means untrusted, user-generated web content can be fetched and read by the agent and could influence subsequent actions.