animated-component-libraries

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required installation and usage steps in SKILL.md and assets/README explicitly direct fetching/copying code from public sites (e.g., "npx shadcn@latest add https://magicui.design/..." and "Visit https://reactbits.dev" to copy component code), so the agent would ingest untrusted third‑party content as part of its workflow which could materially influence behavior.