paper-2-web

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly performs web fetching of public third-party content—e.g., "Automatic logo discovery (with Google Search API)" and citation/hover preview links shown in references/paper2web.md and the INSTALLATION docs (GOOGLE_API_KEY / GOOGLE_CSE_ID in references/installation.md)—so the agent ingests untrusted web content at runtime and uses it to influence website/poster/video generation.