markit-markdown-converter

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). SKILL.md explicitly shows required workflows that fetch and convert arbitrary public URLs (e.g., the CLI example "markit https://example.com/article", SDK convertUrl, and "Convert URL list"), so the agent ingests untrusted public web content as part of normal operation which could contain instructions that influence downstream decisions or tool use.