cli-hub-meta-skill

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly tells agents to "Access the live catalog" and provides a public, auto-updating CDN URL (https://reeceyang.sgp1.cdn.digitaloceanspaces.com/SKILL.md) that the agent would fetch and interpret to discover install commands and tooling, so untrusted third-party content could influence actions.