sync-provider

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and diffs content from external GitHub repositories (repository URL from providers//package.json and the generated .diffs/<commit_hash>/ files), requires the agent to read and deeply analyze those diffs, and uses that analysis to drive refactor planning and apply changes—exposing the agent to untrusted third‑party code and content that could influence actions.