exa

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). Yes — SKILL.md explicitly describes using Exa (a web search engine) and Membrane actions such as "search" and "get-contents" and proxying requests to fetch content from public web pages (see "Exa Overview", "Popular actions", and "Proxy requests"), which the agent is expected to read and could materially influence subsequent actions.