auto-updater-skill

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly queries the OpenClaw registry (see "Check for updates" which calls /api/skills/{id}/updates in SKILL.md) and fetches/applies community-published skill versions, so untrusted third‑party content could be ingested and change agent behavior.