select-svg-icon

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's automated and manual acquisition flows explicitly fetch and ingest SVG assets from public sites (svgrepo.com via scripts/acquire_svgrepo_svg.py and svgfind.com per references/svgfind_acquisition.md), and those untrusted third‑party files are read, validated, and evaluated by the agent (including a vision-based ranking) as part of its decision workflow, so external content can materially influence tool actions.