daily-papers-notes

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The workflow (Step 2) requires calling the /paper-reader skill with arXiv links so the agent will fetch and process public arXiv papers (open web third‑party content) to generate notes and drive edits/commits, which could allow indirect prompt injection from those external documents.