software-security-appsec

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL's "Trend Awareness Protocol" explicitly requires using WebSearch (and if unavailable, "web browsing") to fetch and verify current public web sources and states those search results must drive recommendations, so the agent will ingest untrusted third-party web content that can influence its actions.