slidev-builder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required workflow (Step 3 and Step 5) explicitly creates a package.json including a user-selectable theme package and instructs running "pnpm install" and Slidev export, which fetches and executes arbitrary npm packages from the public registry (user-specified theme names), exposing the agent to untrusted third-party code that can influence runtime behavior.