Video Producer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly instructs the agent to fetch and record user-provided webpage URLs using browser automation (Step 0 and Step 3 in SKILL.md and scripts/record_scroll.py) and to download public BGM via curl/wget, meaning it ingests untrusted third-party web content that the agent will analyze and use to drive storyboard, timing, and rendering decisions.