daily-paper-generator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's required workflow explicitly automates browsing and extracting content from public arXiv pages (via Chrome MCP navigation to https://arxiv.org/search/ and https://arxiv.org/abs/ARXIV_ID and the provided scripts/arxiv_search.py), and then interprets that untrusted third‑party content to score, rank, and decide follow-up actions, so third‑party text could indirectly influence tool use.