rendiv-video

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's docs and workflow explicitly describe loading arbitrary external URLs (e.g., and media components like , , with src props in rules/media-components.md and rules/gif.md) and even show a custom fetch(apiUrl) pattern in render-lifecycle.md, so untrusted third‑party content is fetched and parsed and can influence rendered output and component behavior.