skill-seekers

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly fetches and ingests open/public third‑party content — e.g., "skill-seekers scrape --url https://react.dev", "skill-seekers github --repo ...", and config "base_url" entries shown in SKILL.md and references — and then builds/enhances SKILL.md (see Complete Workflow and references/usage.md) that the agent reads and uses, so untrusted web pages, GitHub issues, and PDFs can materially influence agent behavior and enable indirect prompt injection.