ai-avatar-video

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's workflows in SKILL.md (Quick Start and Full Workflow) explicitly take arbitrary external URLs for image_url, audio_url, and video_url (e.g., "https://portrait.jpg", "https://speech.mp3", "https://video.mp4") which are fetched and transcribed/processed by the apps, meaning untrusted third‑party content is ingested and can influence subsequent processing and actions.