ontology-explorer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's owl_parser.py explicitly fetches OWL/XML from arbitrary HTTP(S) sources using urlopen (and ontology_summarizer.py accepts a --source URL), and the SKILL.md workflow/examples show fetching public OWL files (e.g., https://raw.githubusercontent.com/OCDO/cmso/main/cmso.owl), meaning the agent will ingest untrusted public third‑party content that can influence parsing results and downstream decisions.