openstatus-theme

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). SKILL.md explicitly instructs the agent to accept/paste theme exports from the public themes.openstatus.dev live explorer and then read/interpret those untrusted values to scaffold and register theme files in the repo (see "Clarify Intent" and the "Import-explorer-export" workflow), so third‑party content is ingested and can materially influence file creation and subsequent actions.