ddgr

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly runs DuckDuckGo searches via the local ddgr CLI and instructs selecting and opening candidate URLs for inspection (see SKILL.md Default Workflow and Tool Chaining and references/recipes.md), which exposes the agent to arbitrary public web pages whose content can influence subsequent tool actions.