google-cloud-vision

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill exposes the agent to untrusted third-party web content via the "Detect Web Entities" action (listed in SKILL.md) which returns web pages/images related to an input image (public web results) that the agent is expected to read/interpret as part of its workflow.