hooks-guide

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's SKILL.md includes a mandatory "Refresh Docs" step (plugins/plugin-creator/skills/hooks-guide/scripts/fetch-and-transform-hooks-docs.sh) and an explicit Sources list (e.g., https://docs.anthropic.com, https://docs.github.com) that re-fetches public web documentation into the skill's reference files that the agent is expected to read and use to drive hook behavior, so it ingests third‑party public content that can materially influence decisions.