gate-news-eventexplain

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required execution workflow (SKILL.md) explicitly calls news tools — news_events_get_latest_events, news_feed_search_news, and news_events_get_event_detail — to fetch public/untrusted news and event content which the LLM must read and use to determine causal triggers, so third-party content can materially influence decisions and enable indirect prompt injection.