creatok-recreate-video

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill calls CreatOK's analyze API with arbitrary TikTok URLs (see lib/creatok-client.js -> analyze(tiktokUrl)) and writes transcript/vision data into outputs/recreate_source.json which SKILL.md explicitly instructs the model to read and use to drive recreation decisions, so untrusted, user-generated TikTok content can meaningfully influence the agent's next actions.