overseas-registry-source-research

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md workflow (see "2. 发现数据源" and step "4. 对每个入选模块完成验证闭环") explicitly requires discovering and visiting official and third-party public websites, using Playwright to access URLs, scrape pages, generate download scripts, and download sample datasets—i.e., ingesting untrusted open-web content that can materially influence subsequent actions.