minimax-music-playlist

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required Step 2 explicitly instructs the agent to query the public MusicBrainz API (https://musicbrainz.org/ws/2/artist/?query=artist:&fmt=json) to extract genre tags for artists and use those tags to shape the generated playlist and mmx prompts, which is untrusted third-party content that can materially influence tool behavior.