epub-pro-converter

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's runtime (script/convert.py, specifically the extract_epub -> process_html -> convert_to_md flow) ingests arbitrary EPUB files supplied by users (untrusted/public ebook content) and the workflow/log message ("AI Agent will now proceed with Core Content Extraction" in the script/SKILL.md) shows an agent is expected to read and act on the extracted HTML/Markdown, so third‑party content could materially influence subsequent agent decisions.