latex-paper-en

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's bibliography/citation-verification workflow (references/CITATION_VERIFICATION.md and the Bibliography module) explicitly instructs the agent to call public APIs and services (Semantic Scholar, CrossRef, arXiv, and Exa MCP) to search for and fetch BibTeX/metadata, meaning it will ingest open/public third‑party content that can influence citation verification and subsequent actions.