askyourpdf

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly supports fetching and ingesting external PDFs (e.g., the "Download PDF from URL" action) and provides "Chat with Document" / "Chat with Knowledge Base" flows via the AskYourPDF connector (and a Membrane proxy) which means the agent will read and act on arbitrary third‑party/user-provided content from arbitrary URLs; this can embed instructions that influence agent behavior.