pdf-converter

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.80). The presence of remote install scripts (.sh and .ps1) hosted on a third‑party CDN and explicitly recommended to be piped to sh/iex is a high‑risk pattern (remote execution of code without inspection), even though the GitHub repo and an example PDF look lower risk; together this represents a suspicious distribution vector for malware.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md explicitly accepts and extracts documents from arbitrary public URLs (e.g., "mineru-open-api flash-extract https://example.com/paper.pdf") and directs the agent to read and act on the extracted content (summarize, extract tables, etc.), which means untrusted, user-provided web content can materially influence the agent's actions.