dependency-audit

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The agent explicitly runs public commands like npm audit --json, pnpm audit, and npm outdated (see agents/dep-auditor.md "Run Security Audit" and SKILL.md "Cross-reference CVE databases"), which fetch and parse untrusted, user-published data from public package registries and vulnerability feeds, so it consumes third-party content that could contain injected instructions.