parallel-web-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md "Web Search" section instructs the agent to run parallel-cli search against open/public web sources, save and parse JSON excerpts/URLs from those sites (the $FILENAME.json) and then read and cite those excerpts as part of its answers, which clearly exposes the agent to untrusted third-party content that could contain indirect prompt-injection.