slidev

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill’s docs show Slidev will fetch and render arbitrary public web content at runtime—e.g., iframe layouts that embed arbitrary URLs (references/core-frontmatter.md & core-layouts.md), automatic caching of remote images (references/build-remote-assets.md), and social/media embeds like and (references/core-components.md)—exposing the agent to untrusted, third‑party content used as part of the presentation workflow.