skill-neovim-research

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill explicitly performs web searches and WebFetch of public sites (e.g., "WebFetch neovim.io documentation", searching GitHub, and reading plugin documentation via WebFetch), so it ingests untrusted third‑party content as part of its workflow and could be exposed to indirect prompt injection.