Skywork Excel

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md explicitly states it has a "BUILT-IN web search capability" and instructs the backend agent to "search the web for up-to-date information and incorporate it into outputs," and the tool list includes "parallel_search_full" and "browse_urls," showing it fetches and interprets arbitrary public web content (news, stock data, webpages) as part of its workflow, creating a clear vector for indirect prompt injection.