react-pdf

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). This skill expects and documents downloading and ingesting public resources (e.g., font files from the open web listed in references/google-fonts.txt and remote image URLs via the Image src / curl instructions), so the agent may fetch and read third‑party content at runtime from arbitrary public URLs.