exa-upgrade-migration

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's Step 2 ("Review Changelog") explicitly directs the agent to open and interpret the public GitHub releases page (https://github.com/exa/sdk/releases) and linked Exa Changelog/migration docs, which are untrusted third‑party pages whose content could materially influence upgrade decisions and subsequent actions.