depsdotdev

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill instructs the agent to call public deps.dev API endpoints (e.g., GetPackage, GetVersion, GetDependencies at https://api.deps.dev/v3 as shown in SKILL.md and references/endpoint-map.md) to fetch package/project/advisory data that the agent must read and act on, which is untrusted third‑party content that can influence subsequent decisions.