skill-review

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md and README explicitly state the workflow uses WebFetch/Context7, GitHub, npm, official docs and production repositories (e.g., "Official Docs: WebFetch/Context7 verify API patterns, GitHub updates, npm versions, production repos" in SKILL.md and similar lines in README) to read and act on third‑party web content, which could contain untrusted/user-generated instructions that influence fixes and automated actions.