text2speech

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill's Text2SpeechClient in text2speech_skill/cli.py calls the external API at https://mc.agaii.org/TTS/api/v1 (e.g., get_speakers, get_languages, get_models, get_job_status) and prints/uses returned metadata (speaker descriptions) and follows/downloads audio_url values from that remote service, so it ingests and interprets untrusted third‑party content at runtime.