journal-target

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to "verify via web search" and to read journal websites, recent papers, and third-party lists (public journal websites and research articles), so it ingests open/public third-party web content as part of its workflow.