seed-design-cli

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs using the CLI's add/add-all and --baseUrl options (see SKILL.md and references/migration.md e.g. "--baseUrl https://1-0.seed-design.pages.dev") to fetch snippet content from public registries, meaning it ingests untrusted third-party files that can modify project files and thereby influence subsequent tool actions.