start-my-day

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's search_arxiv.py explicitly fetches papers from public third-party APIs (https://export.arxiv.org/api/query and https://api.semanticscholar.org/ as shown in scripts/search_arxiv.py and described in SKILL.md) and parses titles/abstracts to compute relevance/scores and to decide follow-up actions (e.g., selecting top papers, invoking extract-paper-images and paper-analyze), so untrusted, user-generated content from those sources can materially influence agent behavior.