ln-724-artifact-cleaner

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly instructs that if shared/ is missing the agent should fetch files via WebFetch from the public raw.githubusercontent.com URL (https://raw.githubusercontent.com/levnikolaevich/claude-code-skills/master/skills/{path}), and those fetched detection/cleanup rules are read and used to drive deletion and modification decisions, so public GitHub content can materially influence the agent's actions.