agno

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly integrates web-scraping and web-search tools and examples that ingest public third‑party content (e.g., ApifyTools "RAG Web Browser" and Google Places Crawler, DuckDuckGoTools, HackerNewsTools, Newspaper4kTools and examples like "Scrape this webpage as markdown" / "Analyze the content of the following URL"), meaning the agent is expected to read and interpret untrusted, user-generated or arbitrary website content.