powerpoint-automation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly fetches and ingests public web articles and arbitrary URLs (e.g., "From Web Article: Create a 15-slide presentation from: https://zenn.dev/example/article" in SKILL.md and the Purpose: Blog to Presentation instruction "Fetch article content (API or fetch_webpage)"), which are untrusted/user-generated sources and are parsed into content.json that downstream agents/scripts read and use to drive generation, translation, and build actions—allowing third-party content to materially influence tool behavior.