fusion-discover-skills

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly falls back to GitHub-backed discovery and raw repository inspection (e.g., gh search code, gh api graphql, npx skills add --list, and reading skills/**/SKILL.md) which fetches public, user-generated repository content that the agent reads and uses to drive install/update/remove guidance and next actions.