image-utils

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly downloads and ingests images from arbitrary HTTP(S) URLs (see ImageUtils.load_from_url in SKILL.md Quick Reference and references/code-examples/image_utils.py), so it consumes untrusted third‑party content as part of its runtime workflow which could materially influence downstream processing or actions.