fetch-abstract-to-kb

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly opens DOI redirect pages (https://doi.org/{doi}) with the OpenClaw Browser and runs page-evaluating JS in scripts/fetch_abstract_to_kb.py (and SKILL.md) to extract abstracts from third-party publisher/web pages, and that extracted content is parsed and used to decide acceptance and to write back to the database, so untrusted web content can materially influence tool actions.