presentation-generator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The generator injects unescaped slide fields (see the slide renderers in scripts/generate-presentation.js) into the HTML template (templates/base.html) which Playwright then loads and will fetch external resources (Google Fonts, CDNJS/anime.js) and any remote slide.src or slide.url, so arbitrary third‑party web content can be fetched/executed and materially influence runtime behavior (exports/DOM-driven actions).

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.70). The presentation template includes and loads remote JavaScript at runtime from https://cdnjs.cloudflare.com/ajax/libs/animejs/3.2.2/anime.min.js which is executed in the generated pages (used by animateSlide and video export), so this external URL is fetched during skill runtime and runs remote code the skill relies on.