aube-package-manager

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's required workflows (e.g., running "aube install", "aube dlx", and related commands) explicitly pull packages from public registries (default "https://registry.npmjs.org/") and may read/execute package metadata and lifecycle scripts from untrusted, user-published npm packages, which can materially influence behavior (see SKILL.md install/dlx/approve-builds sections).