education-skills

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The open-syllabus-api SKILL.md explicitly instructs the agent to fetch data from the public Open Syllabus API (https://api.opensyllabus.org/) and includes example curl/python calls that ingest public syllabi/titles/co-assignment results (third-party, user-published content) which the agent is expected to read and use to inform curriculum/textbook decisions, creating a clear vector for indirect prompt injection.