qr-code-generation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md examples (e.g., Use Case 2) explicitly accept external image URLs ("image_urls": ["https://example.com/company-logo.png"]) and instruct the service to embed and style those assets, which indicates the agent will fetch and interpret arbitrary third‑party content (untrusted URLs) as part of its generation workflow and could therefore be influenced by that content.