aminer-free-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly calls public AMiner APIs (e.g., https://datacenter.aminer.cn/gateway/open_platform via paper_search, person_search, venue_search, patent_search and paper_info) as described in SKILL.md and references/api-catalog.md to fetch public paper, scholar, venue, and patent data that the agent must read and use to make decisions (triage, identification, normalization), so untrusted third‑party content can directly influence actions.