pngimg-download

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The included download.sh and SKILL.md explicitly fetch and parse public pages from https://pngimg.com (via fetch_image_urls calling https://pngimg.com/search_image/?search_image=${keyword}), so the skill ingests open third‑party web content to determine which images to download and thus can influence tool actions.