tilt

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's docs explicitly show loading and evaluating third-party code (e.g., references/patterns.md "Extension Ecosystem" which uses v1alpha1.extension_repo(url='https://github.com/tilt-dev/tilt-extensions') and load('ext://...'), plus remote helm/git extension patterns), which causes Tilt to fetch and execute external, community-hosted repositories that can change runtime behavior.