fdk-file-fetcher

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly fetches source files from the public GitHub repo gofynd/fdk-react-templates (see README.md and scripts/fdk_file_fetcher.js using githubListDir/githubGetRaw to call api.github.com and raw.githubusercontent.com) and returns the file contents into chat or writes them locally, so untrusted third-party content from GitHub will be read and can influence the agent's outputs.