tw-edu-interdisciplinary

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly enables "WebSearch（自動啟用）" under the MCP connector and MCP 整合更新 (v3.0), stating the agent will search and load "最新課綱資料、教學素材、時事情境" from the web, which clearly fetches untrusted public web content that the agent is expected to read and use to influence curriculum-generation decisions.