gifgrep

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill directly queries and ingests results from public, user-generated GIF providers (GIPHY and Tenor APIs — see searchGiphy/searchTenor and the request/download functions in gifgrep.js and the SKILL.md examples), parsing titles/descriptions and downloading arbitrary media URLs which the agent would read and act on as part of its workflow, exposing it to untrusted third‑party content that could influence decisions or subsequent actions.