skill-security-auditor

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The analyze-skill.sh script and SKILL.md explicitly support fetching community-hosted SKILL.md content from ClawHub via https://clawhub.ai/api/skills/{slug}/latest (see fetch_skill and "Analyze by slug" workflow), and that untrusted, user-generated content is parsed and used to compute risk scores and recommendations that affect installation decisions.