auto-claude-updater

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill fetches and clones public GitHub content (e.g., git clone https://github.com/AndyMik90/Auto-Claude.git, curl to https://api.github.com/.../releases/latest and raw.githubusercontent.com/…/CHANGELOG.md) and copies/parses those upstream files into local skill documentation, so it ingests untrusted third‑party repository content that the agent reads and uses.