moai-foundation-claude

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's documentation and required workflows explicitly instruct the agent to add and install plugin marketplaces and plugins from external GitHub/HTTP URLs (see reference/claude-code-discover-plugins-official.md showing "/plugin marketplace add" and "/plugin install https://github.com/...") and to enable browser/WebFetch browsing (--chrome / WebFetch/WebSearch in the CLI and headless docs), which causes the agent to fetch and interpret untrusted public third-party content that can change tool behavior.