session-timeout-handler

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly reads arbitrary URLs from REPOS_FILE ("Real-World Examples: Bulk Repository Cloning" using REPOS_FILE="repos.txt" with git clone) and fetches external API data via curl ("Example 3: API Rate-Limited Scraping"), meaning it ingests untrusted public third‑party content as part of its workflow.