nuxt-ui

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill directly fetches and caches component documentation from the public GitHub repository via raw.githubusercontent URLs (see fetch.py building URLs like https://raw.githubusercontent.com/nuxt/ui/v4/docs/content/docs and the SKILL.md "Docs fetched from" line), so the agent ingests open third‑party content as part of its workflow which could influence its actions.