research-brief

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.85). The required workflow uses Tavily MCP to fetch public web content at runtime for research (outsider-authored free text from arbitrary web pages becomes LLM-readable context when the automation generates the brief), creating an indirect prompt-injection risk.