benchmarking

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md "Comparing workspace vs published package" workflow explicitly requires adding npm aliases and running pnpm install to fetch published packages from the public npm registry and then importing/executing those packages in benchmarks, which clearly ingests untrusted third-party code that can influence runtime behavior.