install-sections

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required workflow (SKILL.md "Install Sections" and example commands like pnpm dlx shadcn add @shadcnblocks/[section]) explicitly fetches public third‑party component packages and then instructs the agent to read/parse those installed component files to extract text and drive i18n/import decisions, exposing it to untrusted external content that could influence subsequent actions.