x-cmd-knowledge

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill directly fetches and ingests public, user-generated and arbitrary web content (e.g., Hacker News posts, Stack Exchange questions/answers, DuckDuckGo search results, Wikipedia and Project Gutenberg pages) which the agent is expected to read and summarize, exposing it to indirect prompt-injection from third-party sources.