document-extractor

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md explicitly shows fetching and converting public user-generated content (e.g., "markitdown "https://www.youtube.com/watch?v=dQw4w9WgXcQ\" -o .\video.md") and recommends feeding converted third-party content into LLM workflows, meaning untrusted web content (YouTube and other public URLs referenced) would be ingested and could influence subsequent decisions.