zod-to-form-cli

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The shadcn-ui SKILL.md explicitly instructs the agent to use shadcn MCP tools (e.g., list_components, get_component, get_block, get_component_demo) and allows web_fetch to retrieve component/block source and registry metadata from external registries, which are public third‑party sources the agent reads and uses to drive installation/customization decisions—exposing it to untrusted third‑party content.