agent-framework-azure-ai-py

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill includes HostedWebSearchTool (Bing) which performs web searches and ingests open web content (third‑party/user‑generated) for the agent to read and use, exposing it to untrusted indirect prompt injection.