joseon-sillok-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill directly fetches and scrapes live HTML from the public sillok.history.go.kr site (SEARCH_URL: https://sillok.history.go.kr/search/searchResultList.do and DETAIL_URL_TEMPLATE: https://sillok.history.go.kr/id/<article_id>) and parses those pages as part of its core workflow to select and return excerpts, so external page content can influence what the agent returns.