flight-ticket-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly scrapes and ingests Google Flights public search results via fast-flights (see SKILL.md and scripts/flight_ticket_search.py — fetch_flights/get_flights and build_query_url), and it parses that untrusted public web content to select and rank flights and produce booking links, so those third‑party results can materially influence outputs and decisions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill's ensure_runtime() installs and executes the external package "fast-flights==2.2" (fetched via pip from PyPI) at runtime, causing remote code to be downloaded and executed which the skill depends on for its core functionality.