git-worktree

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required workflow and script (scripts/create_worktree.sh and SKILL.md step 4) explicitly run package installation commands like npm install, flutter pub get, and pip install -r requirements.txt, which fetch and execute code from public package registries (npm/PyPI/pub.dev) — untrusted third‑party sources that could contain user‑generated instructions affecting runtime behavior.