animated-video

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly instructs loading and executing a third‑party script from the public CDN in the "Popmotion fallback" section (https://unpkg.com/popmotion@11.0.5/...), and also mentions dispatching ingestion for GitHub/Figma content, meaning the agent will fetch and consume external public content that can be executed/interpreted and thus materially influence runtime behavior.