react-best-practices

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill contains a download_rules.sh script that explicitly curls markdown files from raw.githubusercontent.com (public GitHub URLs) and references other public docs, so an agent could fetch and ingest untrusted, third‑party content from the open web as part of its workflow.