doc-importer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md Import Workflow (Step 1: Identify Source — "URL: verify accessibility" and Step 2: "Construct URI from source... try the markitdown MCP tool") explicitly fetches and ingests arbitrary external documents (HTML/PDF/DOCX/etc.) from URLs and then reads/converts them as part of its core flow, so untrusted third‑party content could influence downstream processing.