tavily-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's scripts/search.py sends queries to the public Tavily API (TAVILY_API_URL = "https://api.tavily.com/search") and ingests its returned search results, content snippets, and AI-generated answers (as described in SKILL.md), meaning the agent will read and act on untrusted public web content that could carry indirect prompt injections.