video

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's "present" command explicitly accepts --url and has a --web-search option (see the "present — narrated card video" section of SKILL.md), meaning it fetches and ingests arbitrary public web pages and uses that content for LLM-driven script/card generation, which could allow indirect prompt injection.