subsystem-summary-of-history

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly reads and downloads HistoryArchiveState and history files from long-term public archives served over HTTP (e.g., the archive root .well-known/stellar-history.json) via HistoryArchive/HistoryArchiveManager and HistoryArchiveReportWork and uses those fetched files for catchup and publish decisions, exposing the agent to untrusted third-party content.