meson

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md "Dependency management with wrap" section instructs using "meson wrap install" (which downloads .wrap files from the public wrapdb) and references/meson-wrap.md shows wrap-git clones and source_url downloads (e.g., GitHub, zlib.net), so the skill clearly causes ingestion of untrusted public third‑party content that can alter build behavior.