synthesis-mac-sync

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill's SKILL.md requires automatic git fetch/pull/push against remote repositories (examples and manifest show GitHub URLs) and will ingest and act on those public, user-generated repo contents as part of its sync workflow, so untrusted third‑party content can influence sync decisions and actions.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.90). The skill instructs the assistant to automatically modify user configuration files — including SSH config and other sensitive files — and to run arbitrary one-time bash actions and automated git pushes/pulls, which directly change the machine's state and can alter security-relevant settings.