analyzing-pdf-malware-with-pdfid

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly ingests arbitrary, untrusted PDF files (see SKILL.md workflow steps and scripts/agent.py which reads the provided target PDF and extracts embedded JavaScript and URLs via extract_javascript/extract_urls), and it treats that extracted content as part of the analysis and risk scoring—meaning user-generated/third‑party content can materially influence decisions and next actions.