ocr-translate-skills

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The guides (notably pdf-math-translate-guide and latex-translation-guide / zotero-pdf-translate-guide) explicitly instruct fetching and processing public content (e.g., translate_arxiv 2301.00001, downloading .xpi from GitHub releases, translating PDFs/web pages saved to Zotero and using online translation APIs), so the skill expects ingesting untrusted public web/user-provided content which the agent would read and act on.