Nano Hub

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill ingests untrusted, user-provided images via public URLs (explicitly using catbox.moe for uploads and accepting arbitrary image_urls) and passes those images into subagent prompts and image-generation/editing workflows for interpretation, exposing the agent to third-party content that could carry indirect prompt injection.