bmad-agent-marketing-video

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's Shared Patterns (references/shared-patterns.md, "Context C — Live Website URL Audit") and agent-browser setup explicitly require auditing and reading a user-provided public URL and running browser-based research, meaning the agent will fetch and interpret arbitrary public web content (untrusted third-party pages) as part of its workflow and use that information to drive recommendations and actions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill's agent-browser setup includes a runtime installation command that fetches and executes remote code—"npx skills add https://github.com/vercel-labs/agent-browser --skill agent-browser"—and the skill relies on that external package for browser-based research, so this URL is a runtime dependency that can execute remote code.