nansen-web-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly performs web searches via the Serper API and can fetch/read content from arbitrary public URLs using "nansen web search" and "nansen web fetch", so the agent will consume untrusted public web content (titles, snippets, page content) that could influence its decisions.