ljg-present

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's required workflow explicitly allows "URL → WebFetch" as a source (SKILL.md "调用流程" step 1) and then parses and interprets fetched org/markdown content (step 2) to infer themes, pagination and generate slide actions, so arbitrary untrusted web content could materially influence processing and presentation decisions.