Teamo Lite Offline

The `SKILL.md` instructions explicitly mandate the use of the `url_scraping` tool for 'complex tasks' within Workflow 2. This creates a significant vulnerability where a malicious user could craft a prompt to force the AI agent to perform Server-Side Request Forgery (SSRF) or potentially exfiltrate data by scraping internal network resources or sensitive URLs. Additionally, the skill allows `call_other_agents` in Workflow 2, which could extend the attack surface if chained with other agents. These capabilities, while potentially intended for legitimate 'online information gathering,' pose a high risk of prompt injection leading to unauthorized access or data leakage.