digitaliza-data-extractor

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's extractor (scripts/extract_client_data.py — functions parse_client_folder and extract_links_from_html) explicitly reads scraped HTML files (e.g., datos_extraier.md, *.html) from LinkTree/profile and other social/website sources in client folders, so it ingests untrusted public/user-generated content (social profiles, Google Maps links, etc.) that could carry indirect prompt injection.