neo4j-document-import-skill

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs ingesting unstructured content from web sources (e.g., "Ingesting PDFs, HTML pages" and the apoc.load.json example calling a URL, plus LangChain/LlamaIndex document loaders) which the agent processes with LLM pipelines to extract entities/relations, so arbitrary third‑party content could influence tool behavior.