frontend-slides

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill ingests and processes arbitrary user-generated content as part of its workflow—notably Phase 4 (PPT Conversion) extracts text/images from user-supplied .ppt/.pptx files and Phases 1/3 accept existing HTML, text, and images provided by users—so the agent will read and interpret untrusted third-party content.