36kr-aireportlist

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill fetches and parses public, user-generated article data from the open CDN URL https://openclaw.36krcdn.com/media/aireport/{date}/ai_report_articles.json (as shown in SKILL.md and the included scripts), and the agent is expected to read and act on those fields (displaying, detecting new titles, exporting, polling), so untrusted content could indirectly influence behavior.