obsidian-data-importer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly ingests user-provided CSV/JSON data ("Activation Conditions" / "Execution Mode" — it activates when the user uploads or provides CSV/JSON files) and the agent parses and interprets those arbitrary user-supplied datasets as part of its workflow, so it clearly consumes untrusted third‑party/user-generated content.