excalidraw-diagram-generator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly instructs obtaining and loading public Excalidraw libraries (e.g., "Visit https://libraries.excalidraw.com/ ... download the .excalidrawlib" and use scripts like split-excalidraw-library.py and add-icon-to-diagram.py to read libraries/.../icons/*.json and reference.md), so the agent is expected to read and ingest arbitrary third-party icon/reference JSON (untrusted user-provided content) as part of its workflow, which can materially affect generated diagrams and subsequent actions.