gpt-researcher-guide

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly describes online searching and scraping of public sources (e.g., the conduct_research() example and the multi-agent pipeline: "Retriever Agents... search, scrape, and filter content", and search provider configs like TAVILY/SERPER/SEARX_URL), so the agent ingests untrusted third-party web content that could contain instructions influencing its behavior.