remotion-best-practices

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill includes multiple examples that fetch and ingest open third-party URLs (e.g., calculate-metadata's fetch(props.dataUrl), Lottie example fetch('https://assets4.lottiefiles.com/...'), and various mediabunny UrlSource usages for arbitrary src values), meaning the agent would read and act on untrusted external/user-provided content.