context7-cli

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's workflow explicitly instructs using the Context7 registry (e.g., "ctx7 skills search/install" and "Visit context7.com") to fetch and install skills from the public Context7 registry, which are third-party/user-provided and could be read/interpreted and influence agent behavior.