pdf

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill is for processing PDFs, and at runtime it will read/extract text from user-supplied PDF files (which are outsider-authored documents unless the operating user authored them), feeding that extracted prose into the agent’s LLM context via the extraction step.