shadcn-ui

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill explicitly instructs the agent to fetch and display component source, demos, and blocks from shadcn "registries" via MCP commands (e.g., get_component, get_block, search_items_in_registries, list_items_in_registries) and links to external public resources (GitHub/Documentation/Discord), so it will read untrusted/public third‑party content as part of its workflow.