slack-gif-creator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly loads and uses user-provided images (see "Working with User-Uploaded Images" and "Note on user uploads" in SKILL.md and the Image.open('file.png') example), so the agent ingests untrusted, third-party content and is expected to read/interpret it as part of its workflow.