gemini-cli

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's documentation explicitly includes a "Web Fetch Tool Documentation" (https://google-gemini.github.io/gemini-cli/docs/tools/web-fetch.html) and related tools for summarizing and extracting information from web pages, which means the agent can fetch and read arbitrary public web content (untrusted third-party sources) as part of its workflow.