ppt-workflow-builder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's core workflow (SKILL.md "Research slide content by section") explicitly tells the agent to use ref-skill for GitHub examples/issues and grok-search for broader research, which fetches and ingests untrusted public/user-generated web content that the agent must read and use to shape slide content and actions.