resource-scout

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to perform WebSearches and browse public marketplaces and GitHub (e.g., skillsmp.com, skillhub.club, claudeskills.info, mcpmarket.com, and github.com repositories) and to read SKILL.md files, which are open/public, user-generated sources the agent will ingest and interpret—exposing it to untrusted third‑party content and potential indirect prompt injection.