template-slide-deck

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow explicitly says "If user provides a URL instead of a file: Attempt to fetch it" (SKILL.md Step 1) and then reads and applies the fetched .pptx and user documents to map content and drive slide-creation, so arbitrary external URLs or documents could supply untrusted instructions that materially affect tool behavior.