google-adk-typescript

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly configures agents to use web search and remote tool specs—e.g., GOOGLE_SEARCH in references/agents.md and references/multi-agent.md and remote tool loading via OpenAPIToolset.fromUrl and MCPToolset.fromSSE in references/tools.md—so the agent ingests and acts on untrusted public web/URL content which can materially influence its tool use and decisions.