latex-skills

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill documentation includes explicit runtime steps to fetch and use external public templates and repos (e.g., md-to-pdf-academic shows wget to download the Eisvogel template from GitHub, and the Overleaf guide and other SKILLs describe importing/syncing from GitHub/Overleaf and using public CTAN/Repo resources), meaning the agent would ingest untrusted public content that could alter compilation or subsequent actions.