skill-creator-pro

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md and creation-workflow.md explicitly require an automatic "Domain Discovery" step that uses WebSearch/GitHub/community sources (see "Phase 1: Automatic Discovery" and the "Fetch Guidance Pattern" in references/quality-patterns.md) and instructs Claude to read/embed those third‑party web sources into references/ and use them to decide skill structure and implementation, so untrusted public content is ingested and can materially influence actions.