exa-web-search-free

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md (and references/examples.md) defines tools like web_search_exa, get_code_context_exa (GitHub/StackOverflow), company_research_exa and especially crawling_exa that fetch and extract content from public websites and arbitrary URLs, so the agent will ingest untrusted, user-generated third‑party content that can influence its subsequent actions.