ai-presentation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly describes ingesting external materials for synthesis (see "NotebookLM Best Practices" / "Multi-source synthesis — Upload PDFs + videos + web links, AI synthesizes across all"), so the agent workflow expects to read and interpret arbitrary third-party web content (untrusted user-provided URLs), which could enable indirect prompt injection.