linkfox-eureka-patent-image-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill requires and fetches arbitrary publicly accessible image URLs (see SKILL.md Parameter Guide: "url ... must be a publicly accessible image URL" and references/api.md + scripts/eureka_patent_image_search.py which submit and process those URLs), so untrusted third‑party content (user-provided web images and the API's returned metadata) is ingested and can materially influence search results and subsequent agent actions.