nature-reader

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly requires fetching and processing open/public third‑party sources ("PDF, DOI, arXiv, publisher HTML, or pasted text") and instructs the agent to read and act on that content to produce translations, source‑grounded markdown, and follow‑up answers, so untrusted/user‑generated pages could materially influence behavior.