tavily

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md instructs using Tavily's live web search API (POST https://api.tavily.com/search) which returns third‑party web results and optionally raw page content (include_raw_content) that agents are explicitly told to consume/use (the "answer" and "results" fields) in workflows, exposing the agent to untrusted user-generated/open web content that could contain injected instructions.