h5p-patterns

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill embeds and displays public H5P content via iframes (e.g., "public H5P URLs" and src="/mod/h5pactivity/embed.php?id=..."), which clearly pulls user-generated/third-party content into the agent's runtime UI and could carry indirect prompt-injection payloads.