nansen-web-searcher

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). SKILL.md explicitly says the skill searches the open web via the Serper API and returns organic results (title, link, snippet) and supports fetching specific URLs with "nansen web fetch", which exposes the agent to untrusted public web pages and user-generated content that could contain indirect prompt-injection instructions.