discover-skills

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill's SKILL.md explicitly says "If the user asks for external options and network access is available, search a public catalog (e.g. SkillsMP)," meaning it will fetch and interpret public catalog entries (third‑party, user-contributed) to pick and recommend installable skills that can change subsequent agent actions.