rive

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill includes examples that load and process remote, user-supplied .riv files (e.g., RiveAnimation.network in references/rive-flutter-runtime.md and RiveAnimation.network/'https://cdn.example.com/animation.riv') and then read/handle runtime event properties (e.g., using event.data.properties.content to populate a modal in references/rive-events.md), which clearly ingests untrusted third‑party content that the agent/runtime is expected to read and act on.