docugenius-converter

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill auto-installs and runs third‑party packages from public registries at runtime (see scripts/convert_document.py → install_dependencies calling pip install and the Node flow in convert_md/_ensure_shared_node_modules which runs npm install, plus SKILL.md/README stating "auto-install" on first use), so it fetches and executes untrusted open‑web content (PyPI/npm) that can materially change behavior.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The README and installation instructions instruct the agent to clone and run the repository at https://github.com/brucevanfdm/docugenius-converter-skill, which would fetch remote code that the agent (or host) may execute during installation/runtime, so this external GitHub URL is a runtime dependency that can execute remote code.