docling

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). Yes — the DocumentConverter explicitly accepts and fetches arbitrary HTTP/HTTPS URLs (see Quick Start and Parsing/URL Conversion examples like converter.convert("https://arxiv.org/pdf/...") and convert_all with mixed sources/URLs), and those external, untrusted web documents are parsed and chunked for downstream reading/RAG, which could carry indirect prompt injections.