ce-update

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill runs a gh API command to fetch the upstream plugins/compound-engineering/.claude-plugin/plugin.json from the repository (EveryInc/compound-engineering-plugin) and uses the retrieved version field to decide whether to recommend an update, which means it ingests public third-party content (a GitHub file) and uses it to drive actions.