single-slide-ppt

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md and IMAGE_GUIDE.md explicitly direct the agent to use search_web/fetch_web and curl to fetch pages and images from public websites (e.g., code.visualstudio.com, blogs, GitHub, Stack Overflow) so it will ingest untrusted third‑party content as part of its workflow, which can materially influence what the agent downloads and how it constructs slides.