langextract

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly accepts and auto-fetches arbitrary http(s) URLs (see SKILL.md Step 4 and examples using "https://www.gutenberg.org/..." and the API reference parameter fetch_urls=True) and the CLI script (scripts/langextract_extract.py) also allows a --input URL, so untrusted public web content is ingested and directly influences extraction behavior.