containerize-deploy

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly accepts and analyzes remote Git repositories (see "Phase 1: Project Detection" / "If Remote URL provided" and "Phase 3: Git Repository Check" which request/clone https://github.com/...), meaning it ingests untrusted, user-generated third‑party content that is used to decide build and deployment actions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill asks for and uses a Git repository URL at runtime (e.g., https://github.com/user/repo.git or git@github.com:user/repo.git) to perform S2I/Podman builds that fetch and execute repository code, so the external repo can execute remote code the skill depends on.