Dependency Updater

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly delegates "research-subagent" to fetch and interpret package changelogs, release notes, and upgrade/migration guides from public package sources (e.g., GitHub, npm registry) as part of its workflow, which are untrusted third-party/user-generated contents.