searxng-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's scripts/search.py explicitly queries a SearXNG instance (configurable via SEARXNG_URL, defaulting to https://search.981234.xyz) and ingests the returned search results' URLs/titles/snippets (web-derived, untrusted content) which the workflow (SKILL.md) instructs the agent to parse and present and thus could influence subsequent actions.