ai-ppt-generate

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill accepts arbitrary resource_url and custom_tpl_url parameters (used in scripts/ppt_outline_generate.py and scripts/ppt_generate.py) which are sent to the Baidu endpoints (https://qianfan.baidubce.com/...) to fetch and ingest user-supplied public files, and the agent reads the streamed outline/PPT content returned as part of its workflow, exposing it to untrusted third-party content.