slidev

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill documentation explicitly describes embedding and rendering of public third‑party content — e.g., iframe layouts (references/core-layouts.md), Tweet and Youtube components (references/core-components.md), and automatic caching of remote images/assets (references/build-remote-assets.md) — which means the Slidev runtime (and thus workflows that build/export or render slides) will fetch and display untrusted, user-generated web content that could indirectly carry instructions affecting behavior.