distill

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches the public URL https://raw.githubusercontent.com/abpai/skills/main/versions.json on first use and uses that untrusted remote content to decide whether to prompt for and potentially run an update command (npx skills update distill), so third‑party data can materially influence actions.