remotion-best-practices

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's rule files explicitly show fetching and ingesting remote, potentially user-controlled content (e.g., rules/calculate-metadata.md uses fetch(props.dataUrl) to transform Composition props and rules/lottie.md fetches Lottie JSON from a public URL, plus many examples use UrlSource/remote asset URLs), so the agent could be required to read untrusted third‑party content that can materially affect behavior.