unifuncs-reader

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The SKILL.md and read.py explicitly accept arbitrary public URLs and call the UniFuncs Web Reader API (API_URL https://api.unifuncs.com/api/web-reader/read) to fetch and extract web pages and documents, so untrusted third‑party content from those URLs can be ingested and influence downstream LLM-driven extraction/decisions.