slidev

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly documents fetching and embedding untrusted third‑party content — e.g., iframe URLs (references/core-layouts.md), social embeds like and (references/core-components.md), automatic remote image caching (references/build-remote-assets.md), and an external PlantUML server (references/diagram-plantuml.md) — which the Slidev runtime will load and render as part of presenting/exporting slides, exposing the agent to user-generated open-web content.