paper-poster

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's optional "--style-ref" flow (SKILL.md, "Optional: Style reference") accepts arXiv IDs and http(s) URLs and runs tools/extract_paper_style.py to fetch/cache a style_profile.md which is then used as structural guidance for poster layout, so untrusted third‑party content can be ingested and materially influence poster-generation decisions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill's setup includes a runtime command that downloads and runs a TeX Live installer from https://mirror.ctan.org/systems/texlive/tlnet/install-tl-unx.tar.gz (curl ... | tar xz then ./install-tl), which fetches remote code and executes it to satisfy a required dependency for poster compilation.