research-lit

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly performs external web searches and API fetches (Step 1: "Search (external)" — WebSearch, arXiv API, Semantic Scholar, DeepXiv, Exa) and ingests/analyses that third‑party content (including optional PDF downloads and automatic research-wiki ingest) as required workflow steps, so untrusted public content can be read and used to drive tool actions and decisions.