cn-check

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The tool can fetch and run "Hub" checks (Hub API / Hub-published agents on continue.dev and via --agent myorg/slug), which are third-party, potentially user-published markdown agent definitions that the system ingests and executes, exposing it to untrusted external content that could carry indirect prompt-injection instructions.