academic-pptx

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (medium risk: 0.65). Outsider free text can enter the LLM context via the “Source Material Policy” runtime path where the system imports user-supplied URLs/PDFs/other files and then converts extracted web/PDF text into Markdown that is fed into planning/generation (e.g., import-sources → PDF/URL extraction → paper_intake.py / research workflows), and that extracted text is outsider-authored.