docker_hub-automation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill calls Docker Hub APIs (e.g., DOCKER_HUB_GET_ORGANIZATION, DOCKER_HUB_LIST_REPOSITORIES) to fetch public namespaces, repository metadata and README/full_description content from arbitrary Docker Hub users, which are untrusted third-party/user-generated sources the agent will read and interpret.