ln-783-container-launcher

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly instructs the agent to "fetch files via WebFetch from https://raw.githubusercontent.com/levnikolaevich/claude-code-skills/master/skills/{path}" when shared/ is missing, which pulls public GitHub content (untrusted, user-controlled) that the agent is expected to read and which can materially affect its build/launch decisions.