book-converter

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill ingests arbitrary user-provided EPUB content (converted to raw/book-parsed.md by convert_book.py) and explicitly instructs subagents to read and format that raw and chapter content (e.g., raw/book-parsed.md, STRUCTURE_ANALYSIS.md, CHAPTER_MAP.md, chapters/*), so untrusted book text could carry indirect prompt-injection payloads.