dagster-init

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches and runs third-party code: the script calls "uvx create-dagster@latest" (fetching the latest template), runs "uv sync" to download/install dependencies from public package registries, and then runs "uv run dg check defs" which loads/executes the project's definitions—meaning untrusted public content is fetched and executed as part of the workflow (see create_project_with_uvx, install_dependencies, and verify_installation in scripts/create-dagster.py and the SKILL.md steps).