langgraph

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md's Basic Agent Graph defines and binds a "search" tool ("Search the web for information") and lists external search integrations (e.g., Tavily) so the agent is expected to fetch and consume untrusted public web content as part of its workflow, which could carry indirect prompt-injection instructions.