pdf-converter

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly accepts and fetches arbitrary public URLs (e.g., "mineru-open-api flash-extract https://example.com/paper.pdf" in SKILL.md) and requires the agent to read and act on the extracted document ("Read & Process" in the Core Workflow), so untrusted third-party content can influence tool use and decisions.