websearch-standard

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill instructs the agent to execute web searches via the WebSearch tool and ingest content from open/public sites (including Stack Overflow, Hacker News, blogs, and arbitrary URLs) as part of its two-iteration research workflow, exposing it to untrusted third-party/user-generated content that could carry indirect prompt injection.