analyzing-pdf-malware-with-pdfid

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly ingests and parses arbitrary PDF files (see scripts/agent.py functions scan_pdf_keywords, extract_javascript, extract_urls) and SKILL.md Step 3/peepdf examples instruct extracting and evaluating JavaScript/streams from untrusted PDFs, so untrusted third‑party content is read and used to drive analysis and decisions.