research

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's mandatory research workflow (SKILL.md Step 3 "Exploration Prompt" and the Deep Research / references/deep-research-mcp.md) explicitly uses WebSearch/WebFetch and MCP scrapers (firecrawl/exa/context7) to fetch and scrape external URLs and web pages, meaning the agent will read and act on untrusted public web content that can influence subsequent tool use and decisions.