crowdin-context-cli

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly instructs using "crowdin context download" to fetch project strings into crowdin-context.jsonl from Crowdin (a third‑party translation platform), and those user-generated strings are meant to be read/edited by the agent (ai_context) so their content could materially influence subsequent actions.