refresh-research

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow (RT-ICA pre-flight Step 3) explicitly demands "Outbound network access (fetch fresh data)" and Step 4 spawns research-curator agents to "Refresh ... entries with current data from primary sources", which indicates the agents will fetch and interpret untrusted public web content that can change file updates and drive subsequent actions.