rust-learner

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md inline mode explicitly instructs the agent to open and scrape public third-party sites (e.g., https://lib.rs, https://docs.rs, https://releases.rs, https://doc.rust-lang.org, rust-clippy site) using agent-browser/WebFetch and to parse that content as part of its workflow, which exposes the agent to untrusted user-generated web content that could contain indirect prompt injections.