pptx

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's pptxgenjs examples explicitly allow adding images and backgrounds from arbitrary URLs (e.g., slide.addImage({ path: "https://example.com/image.jpg" }) and slide.background = { path: "https://example.com/bg.jpg" } in pptxgenjs.md), so the agent can fetch and then display/inspect untrusted third-party content as part of slide creation and QA.