fetch

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly fetches arbitrary public URLs via the required "url" parameter (see SKILL.md and REFERENCE.md for POST https://api.browserbase.com/v1/fetch) and EXAMPLES.md shows the agent reading and parsing response.content (HTML/JSON, extracting titles, scraping), so untrusted third-party content is ingested and can materially influence the agent's actions.