ai-video-production-master

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's runtime scripts (notably scripts/cloud_i2v_batch.py) call the Vast.ai CLI to search and select public marketplace offers and its onstart script wget's model files from public Hugging Face URLs, so it ingests untrusted, third‑party marketplace/model content and uses those results to decide which cloud instances and workflows to create and run.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The cloud startup script in scripts/cloud_i2v_batch.py downloads and installs remote code/models at runtime (e.g., wget "https://huggingface.co/city96/Wan2.1-I2V-14B-480P-GGUF/resolve/main/wan2.1-i2v-14b-480p-Q5_K_M.gguf" and "https://huggingface.co/Comfy-Org/Wan_2.1_ComfyUI_repackaged/resolve/main/split_files/umt5_xxl_fp8_e4m3fn_scaled.safetensors" and the VAE URL), and runs installer commands (comfy --skip-prompt install / comfy node install) on the provisioned instance, so these runtime-fetched URLs execute remote code and provide required models for the skill.