ai-engineer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly supports web scraping and browsing (e.g., "Document processing: PDF extraction, web scraping, API integrations" and the example "Build an AI agent that can browse the web and perform research tasks"), which entails ingesting untrusted public third-party content that could enable indirect prompt injection.