superdoc-react

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SuperDocEditor explicitly accepts documents as File/Blob/string (e.g., document="/sample.docx" or arbitrary URLs), shows a user file-upload example, and supports external collaboration providers (wss://your-server.com), so it will ingest and render untrusted user-provided or third‑party content into the agent's runtime.