The Agent Skills Directory

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

Third-party content exposure detected (high risk: 0.80). The skill queries a configured Dependency-Track server (DTRACK_URL) via scripts such as scripts/dtrack-findings.sh, scripts/dtrack-vulnerability.sh and scripts/dtrack-audit-get.sh to ingest vulnerability descriptions, CVE details and analysis comments (sourced from NVD/GitHub/other public feeds or user-entered analysis), and those fetched, untrusted/public contents are read and used to drive auditing decisions (e.g., dtrack-audit.sh), so third-party content can materially influence agent actions.

dependency-track