medrxiv-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill directly fetches and ingests untrusted, public medRxiv content from the Cold Spring Harbor API (BASE_URL = "https://api.medrxiv.org/details/medrxiv" and fetchAllPapers in cli/src/helpers.ts), returning titles/abstracts/URLs that the agent is expected to read and use in the search → doi workflow described in SKILL.md, so third‑party, user‑generated content can materially influence follow-up actions.