clawshire-doc-extract-engine

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The CLI explicitly downloads arbitrary http/https PDF URLs via cmd_upload/_fetch_pdf_from_url and the skill and script state that the service's extracted results are always printed to stdout for Claude to read ("始终将…输出到 stdout，让 Claude 和用户都能直接看到提取内容"), so untrusted third‑party documents can be ingested and their content can influence the agent's subsequent decisions.