paper-cluster-by-theme

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Step 1 explicitly requires reading the kept papers' titles, abstracts, and matched_keywords (the KEEP set referenced throughout SKILL.md), which are untrusted public third-party paper content (e.g., DOIs/PMIDs/bioRxiv entries) that the agent must interpret to form clusters and drive subsequent decisions and actions.