tavily-search-and-fetch

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill fetches and ingests arbitrary public web content via the Tavily API (e.g., scripts/tavily_extract.sh extracts full page content from user-supplied URLs, scripts/tavily_search.sh can return raw_content, and scripts/tavily_crawl.sh saves raw_content), so the agent will read untrusted third-party pages that could contain indirect prompt injections.