systematic-search-strategy

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md explicitly directs executing and documenting searches against public databases and grey literature (e.g., "PubMed/MEDLINE", "Google Scholar first 200 results", "OpenGrey") and includes screening steps ("Title/abstract screened") that require the agent to read/interpret third‑party content and use those findings to decide inclusion, so untrusted public content could materially influence agent actions.