skills-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill uses the ccpm CLI to search, fetch "info", and install skills from the public CCPM registry and their associated repositories (e.g., via ccpm search / ccpm info / ccpm install), which exposes the agent to untrusted, user-published skill metadata and packages that it must read and act on.