alphaear-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly performs live web searches and content fetching from public sources (scripts/search_tools.py uses Jina/DDG/Baidu and scripts/content_extractor.py calls Jina Reader at r.jina.ai), and the agent is instructed to read/judge those search results (references/PROMPTS.md and the SearchTools search_list/workflow) so untrusted third‑party content can directly influence tool use and decisions.