magi-ex

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly directs teammates to search and ingest open web content (e.g., "Search online -- use WebSearch" in personalities/MAGI-1.md and "search online" guidance in references/codex.md and references/gemini.md), so untrusted public webpages can be read and materially influence proposals and follow-up actions.