subtitle-generation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly accepts arbitrary file URLs (see SKILL.md Quick Start and multiple Use Case examples with "file_urls": [...]) and transcribes/processes the fetched video/subtitle content as part of its workflow, so untrusted third-party audio/text could embed instructions that materially influence transcription, labeling, styling, or further actions.