oci-pptx

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's required implementation docs (references/implementation-examples.md — marked MANDATORY in SKILL.md) instruct using PptxGenJS to load images/backgrounds from arbitrary URLs (e.g., "path: 'https://example.com/image.jpg'") and the editing workflow (editing.md) explicitly uses subagents to "visually inspect" and then edit slides, so untrusted third‑party image content fetched at runtime could be interpreted by the agent/subagents and influence editing actions.