check-citations
Warn
Audited by Snyk on Jun 13, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.85). The skill ingests OUTSIDER-authored free text from public web APIs at runtime: it sends BibTeX titles/DOIs to CrossRef/Semantic Scholar/OpenAlex and then reads the returned JSON fields (e.g.,
title,authors) into its verification/reporting context.
Issues (1)
W011
MEDIUMThird-party content exposure detected (indirect prompt injection risk).
Audit Metadata