glmv-pdf-to-web

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly allows an HTTP/HTTPS URL as input and instructs (SKILL.md
• "Input" and Phase 1) to download the PDF with curl and then to "Read All Pages" (Phase 2) and extract/title/abstract/links and drive planning and cropping via subagents (Phase 3–4), so untrusted, user-supplied third‑party PDF content is fetched and must be interpreted to decide tool actions and outputs.