html-2-pdf

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly lists a "Convert URL to PDF" action that fetches and converts arbitrary webpage URLs (public third-party content) as part of the runtime workflow, exposing the agent to untrusted user-generated web content that could carry indirect prompt-injection.