embedding-pipeline-builder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). pipeline/web-loader.ts defines WebLoader.loadUrl and loadSitemap which fetch and parse arbitrary public webpages/sitemaps, and the pipeline.ingestUrl call ingests that untrusted web content for preprocessing/chunking/embedding, so the agent will read and act on third‑party web content that could carry indirect prompt injection.