git-worktrees-usage

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's setup step explicitly runs dependency installation/build commands (e.g., "npm install", "pip install -r requirements.txt", "poetry install", "cargo build", "go mod download") which fetch and may execute code from public package registries, exposing the agent to untrusted third-party content that could influence subsequent actions.