editing-pptx-files

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill includes explicit instructions to load images from arbitrary web URLs (see "Image from URL" and "slide.background = { path: 'https://...'}" in pptxgenjs.md) and the workflow requires visual QA/subagents to inspect slide images (SKILL.md QA / "Visually inspect these slides"), so untrusted third‑party content can be fetched and then read/interpreted as part of the agent's workflow.