web-presentation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs using external/untrusted content (e.g., "iframe backgrounds" with data-background-iframe, external Markdown via data-markdown, and the "Dynamic content" example that fetches /api/slides/{slideId} and injects data.content into slides) so the generated presentation can fetch and interpret arbitrary third‑party content at runtime, which could materially influence behavior and enable indirect prompt injection.