evolink-music

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill exposes the agent to arbitrary external files via the documented upload_file/file_url parameter (see "File Upload" in SKILL.md and references/api-params.md), and those uploaded audio files are used as references for continuation/remix workflows that will influence generation behavior, so untrusted third‑party content could materially affect the agent's actions.