skill-creator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's referenced instructions explicitly show running and importing remote scripts (e.g., "deno run https://example.com/script.ts" and Deno imports from URLs) in references/scripts/deno.md and references/scripts/tool-runner.md, which requires the agent to fetch and execute untrusted public third-party code that can materially change tool behavior.