deps

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's required workflow (Step 3: "Research breaking changes first (check CHANGELOG, migration guide, release notes)") explicitly directs the agent to fetch and interpret external project CHANGELOGs/release notes—public third-party content—which could contain instructions that materially influence update actions.