deep-research

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill's Phase 2 Multi-Source Search explicitly instructs the agent to run WebSearch and WebFetch to retrieve and read external URLs (see SKILL.md Phase 2 and references/research-requirements.md), so it ingests untrusted public web content that can materially influence synthesis and downstream actions.