shadcn-ui

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly instructs fetching code and registry data from public third-party sources (e.g., Quick Start and Installation steps using "npx shadcn@latest add" and the Manual Installation note to "copy component code from ui.shadcn.com", plus registry URLs like https://ui.shadcn.com/r/{name}.json), so the skill's workflow requires ingesting untrusted public web content that can influence tooling and subsequent actions.