together-audio

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly accepts and transcribes audio from public HTTP/HTTPS URLs (see SKILL.md "Transcribe uploaded audio files or URLs", references/stt-models.md showing file can be "https://example.com/audio.mp3", and scripts/stt_transcribe.py/ts examples), so it fetches untrusted third-party content that the agent reads and whose transcription could materially influence subsequent actions.