comfy-cli

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly instructs fetching/installing models and nodes from public sources (e.g., "comfy model download --url " and "Sources: CivitAI, Hugging Face, direct URLs" and node install commands), which are untrusted user-generated/open web content that the tool ingests and then uses in workflows, so third-party content could indirectly inject instructions or change behavior.