argocd-image-updater

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's workflow explicitly requires fetching and interpreting content from open third‑party sources—e.g., container registries configured via registries.conf (api_url, argocd-image-updater test commands) and external Git repositories (gitConfig.repository, raw.githubusercontent.com install URLs)—and uses that data to make update/write-back decisions, so untrusted third‑party content can materially influence behavior.