awesome-agentic-patterns-catalog

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md's ResearchOrchestrator and other examples explicitly spawn SearchAgent tasks that fetch "search_results" from specified "sources" (public web/GitHub/website links shown in the doc), meaning the agent is expected to ingest and act on untrusted third-party content as part of its workflow.