excalidraw

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's export workflow (references/export.md) explicitly performs a dynamic import from the public CDN URL "https://esm.sh/@excalidraw/utils@0.1.2" inside Playwright (browser_run_code), meaning it fetches and executes code from an open third‑party source that the agent relies on for exporting and could therefore influence tool behavior.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The export procedure uses a runtime dynamic import that executes remote JavaScript from the esm.sh CDN (https://esm.sh/@excalidraw/utils@0.1.2) inside Playwright (browser_run_code), and this external module is a required dependency for the PNG/SVG export step.