exa-plus

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's scripts (see SKILL.md "Get Content" and scripts/content.sh plus scripts/search.sh) call Exa's APIs to fetch/search and extract text from arbitrary public URLs and web sources (news, tweets, GitHub, LinkedIn, etc.), meaning untrusted third-party content is ingested and can influence subsequent decisions.