updating-knowledge

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly requires web_search and web_fetch (see "Preflight Check" / "Tool Usage Notes: web_fetch capabilities: Can fetch ANY URL directly") and lists community discussions and public websites as source priorities, so the agent will ingest untrusted, user-generated content from the open web as part of its workflow.