tavily

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's scripts (scripts/extract.mjs and scripts/search.mjs) call the Tavily API to fetch/extract content from arbitrary URLs and web search results—returning raw page content, snippets, and AI-generated answers derived from open/public web sources—so untrusted, user-generated third-party content is ingested and can influence agent output and actions.