daily-paper-digest

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.75). 运行时会通过 huggingface_fetcher.py 向 https://huggingface.co/papers 抓取页面 HTML，并把解析出的论文标题/作者/摘要等“免费文本”拼入 main.py 的 format_paper() 输出，进而进入代理 LLM 上下文；该文本属于外部网站（HuggingFace）内容，存在间接提示注入风险。

MEDIUM W021: Hidden or invisible Unicode characters detected (potential obfuscation or prompt injection).

• Hidden Unicode characters detected (1 type(s) found)