evolink-nano-banana-2

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly accepts and fetches arbitrary external image URLs via upload_file/file_url and uses them as image_urls for generation (see "Step 2: File Upload" in SKILL.md, references/api-params.md upload-from-URL examples, and scripts/evolink-image-gen.sh --image), so untrusted third-party content is ingested and can directly influence generation behavior and subsequent tool actions.