baoyu-url-to-markdown

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill (scripts/main.ts) launches Chrome and loads arbitrary user-supplied URLs via Chrome CDP and then runs cleanupAndExtractScript / html-to-markdown to extract and convert the page HTML, so it fetches and interprets untrusted public web content (arbitrary URLs).