legacy-to-ai-ready

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly includes a "resource-scout" component (assets/resource-scout/SKILL.md) that instructs the agent to web-search and browse public marketplaces and GitHub (SkillsMP, SkillHub.club, claudeskills.info, various GitHub repos) and a "skill-downloader" (assets/skill-downloader/SKILL.md) that downloads and validates SKILL.md and archives from arbitrary GitHub URLs and direct URLs—i.e., the agent is expected to fetch and read untrusted, user-generated third‑party content as part of its workflow.