latex-paper-en
Warn
Audited by Snyk on May 25, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.80). The bibliography/citation workflow (references/CITATION_VERIFICATION.md), which is referenced by the Bibliography module in SKILL.md, explicitly instructs using public APIs (Semantic Scholar, CrossRef, arXiv and Exa MCP) to search for and fetch paper metadata/BibTeX, so the agent is expected to fetch and interpret arbitrary third‑party web content as part of its verification workflow — meeting the criteria for exposure to untrusted third‑party content.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata