rss-paper-feeds

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly fetches and parses open/public RSS feeds (e.g., fetch_arxiv_feed calling feedparser.parse on https://rss.arxiv.org/rss/[category]) and calls public APIs (Semantic Scholar) and then uses that untrusted, user-generated paper content to filter, summarize, and drive alerts/workflows, so third-party content could influence agent decisions.