web-demo-video

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required runtime recording step (scripts/record-scenes.ts invoked from the documented pipeline and README usage like "/web-demo-video https://your-website.com") calls page.goto(action.url) using Playwright based on URLs in public/scenario.json, so it fetches and records arbitrary public/user-provided web pages (untrusted third‑party content) as part of its workflow and will act on/drive interactions with that content.