brave-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill uses Brave Search and explicit scripts (scripts/search and scripts/content) to fetch and extract content from arbitrary public web pages/URLs, so the agent will ingest untrusted third-party (web/social/forum) content that could contain indirect prompt injection.