hugging-face-tool-builder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's scripts fetch and parse public, user-authored Hugging Face content (e.g., API endpoints like https://huggingface.co/api/models and raw model READMEs via hf download or https://huggingface.co//raw/main/README.md as in hf_model_card_frontmatter.sh, baseline_hf_api.*, find_models_by_paper.sh, etc.), which are untrusted third‑party/user-generated content that the agent is expected to read and interpret.