rust-cli-tui-developer

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill instructs the agent/user to initialize git submodules and clone public GitHub repositories (e.g., source/clap, source/inquire, source/ratatui via git submodule update / git clone in README.md and SOURCE_SETUP.md), which pulls in third‑party, user‑authored content that the agent is expected to read/interpret (examples and docs) and could contain untrusted input.