ai-evolution-engine

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.85). The SKILL.md and implementation scripts (scripts/learn.mjs and scripts/evolve.mjs) explicitly describe "扫描ClawHub新skills"/automated discovery and installation of ClawHub skills—an open/public, user-contributed source the agent would ingest and install, which could allow third-party instructions to change agent behavior.