research

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly launches web-research agents (perplexity-researcher, claude-researcher, gemini-researcher) to perform web/current searches and process their outputs (see SKILL.md and workflows/conduct.md), and even references Brightdata scraping tools (mcp__Brightdata__search_engine) — demonstrating it ingests untrusted public web content that can influence synthesis and agent actions.