wiki-init

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md explicitly tells the user to "run wiki-ingest directly with a URL or file path" (Confirm) and the accompanying codebase.md describes ingesting READMEs/docs and synthesizing/executing against those sources, so the agent is expected to fetch and interpret arbitrary external URLs/third-party documents which could contain untrusted, user-generated instructions.