frontend-master

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly instructs loading/displaying assets from open/public providers (e.g., example image URLs and fallbacks from https://source.unsplash.com, https://api.dicebear.com, https://api.iconify.design and references to LottieFiles/unDraw), so the agent will fetch and render untrusted, user-sourced third‑party content at runtime.