daily-papers-notes

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to ingest public third‑party papers by calling the /paper-reader skill with arXiv links (Step 2: "使用 Task agent 调用 /paper-reader skill（传入 arXiv 链接）"), so it will fetch and interpret open web content that can materially influence note generation and subsequent file edits.