brave-web-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md explicitly calls the Brave Search API (GET/POST https://api.search.brave.com/res/v1/web/search) and returns web.results[].url, description, extra_snippets and other scraped data from arbitrary public websites (see "Response Format" and "Use Cases"/"When to Use Web Search"), which the agent is expected to read/use and could contain untrusted instructions that influence behavior.