creating-slides

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly requires using web_search and read_webpages_as_markdown (see "Web Content Retrieval" and "Complete Creation Workflow → Internet Search") and image_search to fetch and ingest public webpages and images that the agent must read and use to plan and generate slides, so untrusted third‑party content can directly influence tool actions and decisions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill mandates loading the Tailwind CDN script at runtime (https://cdn.tailwindcss.com/3.4.17), which is a required dependency for generated pages and returns/executes remote JavaScript in the runtime environment, so it constitutes an external runtime script execution risk.