gpt-image-2

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly tells agents to fetch and grep the community prompt library from public sources (e.g., raw.githubusercontent.com/YouMind-OpenLab/awesome-gpt-image-2/main/README.md and the youmind.com gallery) and to accept arbitrary public image URLs as reference inputs, meaning untrusted, user-generated web content is ingested and can materially influence prompts and subsequent tool actions.