exa-search
Warn
Audited by Snyk on Jul 3, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.85). The Exa Search skill calls
POST https://api.exa.ai/searchand, whencontents.text/contents.highlights/contents.summaryare requested, Exa returns extracted page text/highlights/summaries from arbitrary web pages at runtime; that readable content is outsider-authored (public web) and is fed into the agent’s LLM context via the skill’s response fields likeresults[].text/results[].highlights/results[].summary(and potentiallyoutput.content).
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata