aminer-daily-paper

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly calls the public AMiner rec5 API (see scripts/rec5_api.py and run_pipeline.py which POST to https://datacenter.aminer.cn/gateway/open_platform/api/v3/paper/rec5) and ingests returned paper titles, summaries, and analyzed_topics into the pipeline and reply_text, so arbitrary third‑party content from AMiner can influence the agent's outputs and decisions.