ov-add-data

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md's "OpenViking (OV) add-resource" section explicitly permits importing web pages, arbitrary URLs and remote git repositories (e.g., https://arxiv.org/..., GitHub/git addresses), which are semantically processed and added to the OpenViking context database and thus can be read/interpreted by agents to influence tool use and decisions.