document-reader

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.75). Outsider-authored free text can be ingested when the operating user supplies an external document path (e.g., --file pointing to a downloaded/forwarded file or an archive) and the script extracts/reads its contents into result['content'] (including via read_from_zip/read_from_tar/read_from_rar/read_from_7z), which is then printed/returned for downstream LLM context.