openaire-api

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md shows the agent querying and ingesting JSON from the public OpenAIRE Graph API (https://api.openaire.eu) — a public, third-party source of research titles/descriptions aggregated from many external repositories — which the skill explicitly reads and processes as part of its workflow, so untrusted external content could influence agent decisions.