excalidraw-studio

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's icon-library workflow (references/icon-libraries.md and scripts/README) instructs the assistant to download and read public .excalidrawlib files from https://libraries.excalidraw.com into libraries//reference.md and icons/* and to parse those icon JSON files as part of diagram generation, exposing the agent to untrusted third-party content that can influence its actions.