spec-kitty-sync-plugin

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill requires running the external spec-kitty CLI (installed from PyPI) which pulls upstream command templates and mission configs into .kittify/ (via spec-kitty init), and the agent is explicitly instructed to read and reconcile those fetched templates as part of its workflow, exposing it to untrusted third‑party content that could carry indirect prompt-injection.