web-search-prime

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill calls the webSearchPrime tool against the Zhipu "web-search-prime" MCP server (baseUrl https://open.bigmodel.cn/api/mcp/web_search_prime/mcp) to retrieve open web search results (titles/URLs/snippets), which are untrusted third‑party webpages that the agent is expected to read and can influence subsequent decisions.