docs-seeker

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's fetch-docs.js and related workflow explicitly construct and retrieve documentation URLs from public sources (notably context7.com and discovered web/GitHub URLs) and outputs llms.txt which the agent is expected to read/analyze (e.g., "Read URLs with WebFetch"), exposing it to untrusted third-party content.