n8n-syntax-ai-nodes

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md explicitly lists and uses web-facing tools (e.g., "Wikipedia", "SerpApi", "SearXNG" in the Tools section and "Pattern 1: Basic Agent Workflow" showing ai_tool → [Wikipedia]) and RAG retrieval patterns that ingest public documents, which means agents are expected to fetch and read untrusted public web/social content that can influence agent decisions.