ats-resume-matcher

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's SKILL.md "Extraction Priority" explicitly says "If URL provided → Fetch and extract" (and accepts pasted content), and the core workflow parses and interprets resumes and job descriptions to produce scores and actionable suggestions, so arbitrary third‑party web pages or user‑provided text could be ingested and materially influence analysis and next actions.