agent-zero-bridge

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly allows Agent Zero to invoke Clawdbot tools (see SKILL.md "From Agent Zero → Clawdbot" which shows node /a0/bridge/clawdbot_client.js tool web_search '{"query":"Node.js best practices"}') and the clawdbot_client.js tool command (scripts/clawdbot_client.js) can call arbitrary Clawdbot tools that may fetch open/public web content, so untrusted third‑party pages could be read and influence subsequent actions.