literature-search-biorxiv

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's scripts (scripts/search_by_dates.py and scripts/search_by_doi.py) directly fetch JSON metadata and optional abstracts from the public bioRxiv/medRxiv API (https://api.biorxiv.org/), ingesting untrusted, user-generated preprint content that the agent reads and uses to filter and decide outputs, so third-party content could materially influence behavior.