valyu-best-practices

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to fetch and ingest content from public web sources—e.g., the Contents API 'urls' parameter and the Search/DeepResearch APIs (searchType="web"/"all" and includedSources like techcrunch.com or reuters.com)—so the agent will read untrusted third‑party content.