wendy-swift

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs the agent to discover and evaluate packages on public third‑party sites (e.g., https://swiftpackageindex.com and the listed GitHub repo URLs), meaning the agent will fetch and interpret untrusted, user‑generated web content (package pages, compatibility matrices) that can materially influence package selection and subsequent actions.