project-docs

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The documentation shows the CLI ingests arbitrary external URLs (e.g., "aicp generate-avatar --image-url URL --audio-url URL" and "aicp transfer-motion --image-url URL --video-url URL") and references external providers/APIs, so the agent can fetch and interpret untrusted public third‑party content.