sustainability-fulltext-fetch

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's runtime fetch logic (scripts/fulltext_fetch.py and the SKILL.md "Extraction Priority") explicitly retrieves API metadata from OpenAlex/Semantic Scholar and falls back to fetching and extracting fulltext from arbitrary canonical_url/url webpages, so it ingests untrusted public third-party content that directly affects extraction, persistence, and subsequent control flow.