research-add-fields

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The workflow's Step 2 "Web Search: Launch agent to search common fields in this domain" requires the agent to fetch and read public web content (open web search results), which are untrusted third-party sources that could contain instructions influencing the agent's suggested fields and subsequent file-modifying actions.