researchers-verifier

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill instructs the agent to open and verify arbitrary source URLs listed in RESEARCH.md and SOURCES.md (testing live pages, archive.org/archive.today captures, news sites, blogs, Wikipedia, and other public web pages), so it directly fetches and reads untrusted third‑party web content as part of its verification workflow.