aliyun-animate-anyone

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow explicitly ingests arbitrary public HTTP/HTTPS image and video URLs (see "Prerequisites" in SKILL.md and the --image-url/--video-url arguments in scripts/prepare_animate_anyone_request.py), so the agent will fetch and interpret untrusted third-party user-generated content as part of detect/template/generate steps and that content could materially influence processing or subsequent actions.