byted-byteplus-infoquest-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md and scripts (scripts/search.py and scripts/extract.py) explicitly perform web and image searches and extract content from arbitrary public URLs via the InfoQuest API, ingesting untrusted, user-supplied third‑party webpages/search results that the agent reads and returns—content that could contain instructions and therefore materially influence later actions.