datasheets

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs Claude to read selected PDF pages of datasheets (SKILL.md "On cache miss / stale / low score: Claude reads selected PDF pages and extracts structured data") where the PDFs are downloaded from third-party distributor sites (e.g., digikey, mouser, lcsc, element14 under /datasheets/), and those extracted contents directly drive analyzer decisions (verification, detectors, and caching), exposing the agent to untrusted external content that can influence actions.