google-slides

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill uses the Google Slides API to read and process user-created presentation content (e.g., slides_operations.py read, get_presentation_info, read_slide) — i.e., third-party user-generated slides and referenced image URLs — which the agent ingests and could contain untrusted instructions.