remotion-best-practices-zh

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's rules explicitly permit and instruct fetching and using remote, third-party content (e.g., rules/calculate-metadata.md says you can "通过网络请求获取数据并把结果合并进返回的 props", rules/assets.md and rules/images.md allow remote URLs, and rules/import-srt-captions.md uses fetch() to read .srt), meaning untrusted web content can be ingested and materially influence composition props and rendering behavior.