tw-edu-classroom-culture

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's MCP integration explicitly enables WebSearch in SKILL.md under "MCP 連接器" and "MCP 整合更新 (v3.0) — WebSearch（已啟用）", indicating the agent will fetch and interpret public web content (latest curriculum, teaching materials, and news) as part of its workflow, which exposes it to untrusted third‑party pages that could inject instructions affecting subsequent actions.