cinematic-ui

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md workflow explicitly requires using web access and "external sources" to "research the chosen director and film" and to "inspect that reference first" (SKILL.md Phase 1 & Phase 2), and directs the agent to record sources and translate that research into decisions.md/storyboard/compiled-spec — meaning arbitrary public webpages or user-provided URLs are read and can directly change the agent's decisions and actions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The repo URL https://github.com/akseolabs-seo/cinematic-ui is explicitly recommended to be git-cloned for installation/skill loading and contains SKILL.md/AGENTS.md/CLAUDE.md which the agent will read and act on at runtime, meaning fetching that remote repo directly supplies prompts/instructions and is a required dependency.