jellyfin

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly queries the public OMDb API (see SKILL.md OMDb config and scripts/jellyfin_tool.py functions _query_omdb/_lookup_by_imdb_id) and uses the returned Title/Year/IMDB ID to decide and perform filesystem rename actions, so untrusted third‑party responses can directly influence tool behavior.