pdf-to-markdown

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill ingests and processes arbitrary user-supplied PDF files (the "input" path in scripts/convert_to_markdown.py) and uses the Marker converter plus an LLM to read and describe document/image content, so untrusted third-party documents could carry embedded instructions that the agent will interpret.