groove-admin-update

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill pulls public repository files via "npx skills add andreadellacorte/groove" and queries the GitHub Releases API at https://api.github.com/repos/andreadellacorte/groove/releases/latest, then reads and executes migration files from skills/groove (runtime behavior required by the SKILL.md), so untrusted third‑party content from GitHub is ingested and can directly influence tool actions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The skill runs "npx skills add andreadellacorte/groove" at runtime, which fetches the GitHub repo (https://github.com/andreadellacorte/groove) and later reads and executes migration files from that fetched content, meaning remote code from that URL is executed and is a required dependency.