research-lookup

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.85). The skill’s required runtime path uses web-search/academic retrieval via external services (e.g., parallel-cli search/Parallel Chat API and Perplexity Sonar Pro) and then injects the resulting fetched page excerpts/summaries into the LLM’s context as part of the generated research response, which is outsider-authored free text from public web sources.