elevenlabs-remotion

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). CLAUDE.md explicitly instructs the agent to "WebFetch the URL" and extract design tokens from a user‑provided website when no project design file exists (see "Before Creating Videos" / "Design Extraction Workflow"), so arbitrary public webpage content would be fetched and interpreted and could materially influence composition generation and tool actions.