slides

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly accepts user-provided URLs ("Accept: topic description, text content, URL(s)" in Step 1) and instructs the CLI to include them via --source-url ("If the user provided a source URL, add --source-url \"{url}\"" in Workflow Step 1), meaning arbitrary public webpages can be fetched and directly influence slide generation.