strands-spec

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly documents and uses web-fetching/search tools (tools.md: web_fetch, http_request, duckduckgo_search, tavily_search) and the examples (examples.md, patterns.md) show agents fetching and synthesizing open web/news/academic pages as part of workflows, so untrusted third‑party content is read and can materially influence agent decisions and subsequent actions.