skill-forge-quiz

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). Yes — the required "试卷生成流程" explicitly instructs the Agent to use the search_web tool (网络搜索) and may ingest content from community sources like StackOverflow, GitHub, blogs, LeetCode and other public websites to generate questions, which are untrusted third‑party/user‑generated pages that the Agent must read and use to produce quiz content.