software-copyright-materials

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's workflow explicitly permits and instructs the agent to "联网搜索相近产品和行业资料" during the business-understanding phase (SKILL.md step 4 and references/business_understanding_rules.md), requiring the model to read and incorporate external public web research into the business-understanding draft that then guides application fields, manual text, and extraction/selection decisions—i.e., ingesting untrusted third‑party web content that can materially influence subsequent actions.