cloudflare-tomarkdown

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill (SKILL.md and scripts/render.js) explicitly fetches and scrapes arbitrary public URLs—using fetch() and Cloudflare's tomarkdown and Browser Rendering APIs—to convert untrusted web pages into Markdown for use by LLMs, so third‑party content could contain instructions that materially influence downstream actions.