cli-creator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's update-check.ts (present in the SKILL.md/templates) performs a fetch to the public npm registry (https://registry.npmjs.org/${pkg.name}/latest) and parses that external, user-published package metadata to generate update instructions, so untrusted third‑party content is ingested and can influence subsequent actions or recommendations.