agenticflow-skills

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's documentation explicitly configures and documents tools that fetch and ingest open web content (e.g., web_search, http_request, firecrawl web scraping, and dynamic option fetching) in reference/agent/tools.md, reference/workflow/node-types.md and related workflow docs, so the agent is expected to read untrusted third-party pages/APIs whose content could materially influence actions.