remotion-best-practices

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's rule files explicitly instruct fetching and ingesting arbitrary external content (e.g., rules/compositions.md's calculateMetadata example with fetch(props.dataUrl), rules/lottie.md fetching a remote Lottie JSON, rules/import-srt-captions.md and display-captions.md allowing remote caption files, and rules/get-video-duration.md / get-video-dimensions.md using UrlSource for remote videos), meaning untrusted third‑party/user-provided pages/files are read at runtime and their contents directly drive metadata, captions, rendering decisions, and tool behavior.