glmv-pdf-to-ppt

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly accepts an HTTP/HTTPS PDF URL and instructs "If the input is a URL: download with curl first" (SKILL.md Input / Phase 1) and then requires the agent to "read all page images sequentially" and base the slide planning/cropping/generation on that content (Phase 2–4), so arbitrary public PDFs from the web can be ingested and can materially influence agent actions.