seedance

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md explicitly accepts and ingests arbitrary public image/video URLs as inputs (see "Image-to-Video" and "Reference-to-Video" examples and the guideline "Image input — supports public URLs or Base64"), meaning untrusted third-party media can be fetched and used to influence generation and thus could enable indirect prompt injection.