pptx

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill (SKILL.md → "Create from scratch") directs the agent to use pptxgenjs (pptxgenjs.md) which explicitly supports embedding images/backgrounds from arbitrary URLs ("From URL" / slide.addImage with https://...), and the QA workflow in SKILL.md instructs subagents to visually inspect slide images, so the agent can fetch and read untrusted third‑party web content as part of its runtime flow and that content can influence editing/verification actions.