remotion-best-practices

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly ingests arbitrary remote assets (images, video, and audio) from user-provided URLs (see rules/assets.md "Remote Assets" and the PropertySchema in rules/compositions.md which includes images and voiceoverUrl) and even transcribes/syncs audio to drive captions and timing (rules/captions.md "Generate Captions from Audio" and "Sync to Voiceover"), so untrusted third-party content is read and can influence rendering and behavior.