web-fetch

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The scripts/fetch.sh explicitly fetches and extracts content from arbitrary HTTP/HTTPS URLs using curl (see scripts/fetch.sh), so the agent ingests untrusted public web pages which could carry indirect prompt-injection content.