pg-update

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's update workflow (scripts/check-update.sh and the "Check latest version" step in SKILL.md) explicitly calls npm view @proxygate/cli to read the public npm registry and uses that untrusted third-party package metadata to decide whether to prompt for or perform updates, so external content can materially influence agent actions.