remotion-best-practices

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs runtime fetching of arbitrary remote resources (e.g., calculate-metadata.md's calculateMetadata example calling fetch(props.dataUrl)), and other examples (lottie.md fetching Lottie JSON, assets.md and mediabunny UrlSource usage for remote image/video URLs) show the agent will ingest untrusted public content that directly affects composition props, durations, and rendering behavior.