felo-livedoc

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's CLI explicitly accepts arbitrary public URLs via the add-urls command (see scripts/run_livedoc.mjs -> case 'add-urls' which POSTs URLs to /livedocs/{short_id}/resources/urls) and the retrieve/route commands return and display resource content/snippets from those LiveDoc resources, meaning untrusted third-party web content can be ingested and materially influence routing, retrieval, and subsequent actions.