excalidraw

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches and scrapes arbitrary user-provided websites (Phase 2 "Scrape my website" — uses WebFetch to extract colors/fonts/tone) and also ingests/reads user-supplied content or links/articles for slide generation (Phase 3 "If content is provided: Read/analyze the content"), so untrusted third‑party content is read and used to drive decisions and slide-building.