aliyun-liveportrait

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly requires public HTTP/HTTPS image and audio URLs (see SKILL.md "Input image and audio must be public HTTP/HTTPS URLs" and scripts/prepare_liveportrait_request.py), which are fetched/ingested by the LivePortrait flow so arbitrary third‑party user content can influence generation and agent behavior.