stitch-shadcn-ui

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md explicitly instructs the agent to use MCP commands (e.g., list_components, get_component, list_blocks, get_block, and registry search) and to browse ui.shadcn.com and custom third‑party registries to retrieve component/block source, meaning it fetches and ingests content from public third‑party registries/websites that could be untrusted and directly influence installation and subsequent actions.