remotion-video-toolkit

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required guidance shows runtime fetching and ingesting of arbitrary remote URLs that the agent is expected to read and act on (e.g., rules/calculate-metadata.md fetch(props.dataUrl) to transform props, rules/assets.md and rules/images.md permitting remote asset URLs, rules/import-srt-captions.md and rules/lottie.md fetching remote files, and extract-frames/can-decode using UrlSource), so untrusted third‑party content can directly influence rendering decisions and tool behavior.