felo-livedoc

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill accepts arbitrary public URLs via the "add-urls" command (scripts/run_livedoc.mjs → POST /livedocs/{short_id}/resources/urls) and performs semantic "route"/"retrieve" operations that return and print extracted resource content, so untrusted, user-generated web pages can be fetched and their content read/used to influence routing, retrieval, and downstream actions.