build-zoom-virtual-agent

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly describes a "Knowledge-Base Sync Pipeline" and instructs using "web sync for crawlable documentation" and "custom API connector for external CMS pull/push synchronization" (see scenarios/high-level-scenarios.md and SKILL.md), which requires fetching and ingesting open/public third‑party content that the agent will read and use to drive behavior.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill explicitly loads and depends at runtime on the remote Zoom SDK script (https://us01ccistatic.zoom.us/us01cci/web-sdk/zcc-sdk.js), which executes remote code in-page and is required to control the Virtual Agent's behavior and prompts.