codify-design-to-code

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's mandatory workflow fetches and ingests user-provided design data (screenshots, full JSON and assets) from the Codify Dev API endpoints (e.g., POST http://127.0.0.1:13580/get_design, /get_screenshot and the download-assets script calling /get_asset) using file_key/node_id and then directly reads and interprets that content to drive DOM/style decisions and code-generation, so untrusted/user-generated third‑party content can materially influence agent actions.