skills-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly uses the ccpm CLI to search and fetch skill details from the public CCPM registry (see "ccpm search" and "ccpm info" in SKILL.md), which exposes the agent to untrusted, user-contributed third-party skill metadata and packages that can influence installation and agent behavior.