comfyui-character-gen

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly instructs the agent to monitor and fetch content from public third‑party sources (HuggingFace, Civitai, GitHub, r/StableDiffusion, ComfyUI Discord, etc.) — see references/evolution.md and SKILL.md's "Before starting a workflow" and "Sources to Monitor" — and to use that untrusted, user‑generated content to choose models and update workflows, which can materially influence tool selection and next actions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill includes runtime installation and execution of external code (git clone + pip/python) such as the Wav2Lip repository (https://github.com/Rudrabha/Wav2Lip) which is fetched at runtime and then executed/used as a required dependency, so this is a high-confidence runtime remote-code dependency.