reinforce-skills

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's workflow explicitly instructs running the Next.js codemod (Step 3) which downloads public Next.js docs from the web into .next-docs/ and injects a compressed index into AGENTS.md/CLAUDE.md (and cites the public Vercel blog), meaning the agent will read and act on externally fetched public website content that can influence its actions.