crewai-developer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly equips agents with web-search and scraping tools (e.g., SerperDevTool, ScrapeWebsiteTool, WebsiteSearchTool, SeleniumScrapingTool, YouTube search tools) and shows agents using them in research workflows, so the agent will fetch and read untrusted public web and user-generated content (websites, forums, YouTube) enabling indirect prompt injection.