exa-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly performs web searches and uses WebFetch/mcp__exa__web_search_exa to find and extract full content from arbitrary URLs (see "Quick Reference: 'Read this URL: [link]' -> WebFetch" and "Integration Patterns: Discovery + Extraction"), so the agent will read untrusted third-party web content.