opensrc-inspect

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly fetches and ingests public package/repos (e.g., "opensrc /", "opensrc pypi:", crates, GitHub) and requires the agent to "Read the repo AGENTS.md" and inspect fetched source files, meaning untrusted, user-generated repository content can be read and influence analysis or actions.