rtcm3-knowledge-patch

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md's "NTRIP Protocol" section (references/ntrip.md and the NTRIP Connection (v1) examples in SKILL.md) explicitly instructs fetching sourcetables (GET /) and connecting to public NTRIP casters (GET /mountPt) to receive raw RTCM3 streams (untrusted third‑party mountpoints), which the agent is expected to read/parse and act on (e.g., apply corrections, send GGA), so external untrusted content can influence runtime behavior.