alicloud-ai-text-document-mind

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's quickstart and scripts/quickstart.js require submitting an arbitrary public file URL (DOCMIND_FILE_URL) to DocMind and then parsing the returned document results (SKILL.md and scripts/quickstart.js), meaning untrusted third-party content from arbitrary public URLs is ingested and interpreted as part of the workflow and could influence subsequent actions.