pdf4me

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md explicitly includes a "URL to PDF" workflow that sends a user-supplied webUrl to the /api/v2/ConvertUrlToPdf endpoint (ConvertUrlToPdf step), which fetches arbitrary public webpages and—combined with the skill's extract/OCR operations—allows untrusted third‑party page content to be read and acted on at runtime.