docx

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.85). The required runtime workflow for editing/reading DOCX (“Redlining workflow” / “Text extraction”) ingests the contents of a user-supplied DOCX by unpacking it and converting/extracting its text (e.g., pandoc ... path-to-file.docx and reading word/document.xml), which is outsider-authored free text when the DOCX was not authored by the operating user.