nano-banana-image-generator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Step 2 "Source Reference Photos" explicitly instructs the agent to use WebSearch/WebFetch to find and download high-resolution reference photos from public sites (Wikipedia/Wikimedia, Library of Congress, press kits, professional photo sites), and those downloaded third-party images are then used as --input to the generator—i.e., external untrusted content is fetched and directly influences generation/editing decisions.