ai-automation-workflows

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.85). The required runtime workflow invokes third-party apps like tavily/search-assistant (web content fetched at runtime) and then feeds the returned text (e.g., $RESEARCH) into subsequent LLM prompts, creating an indirect prompt-injection path from outsider-authored web pages into the agent context.