Hearth

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's references include explicit bootstrap commands that fetch and run public GitHub content (e.g., the lazy.nvim git clone in references/editor-configs.md and the Homebrew install curl in references/dotfile-management.md), which means the agent's workflow can fetch and execute untrusted third‑party code that could influence subsequent actions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill includes runtime bootstrapping that fetches and runs remote code—for example a git clone of https://github.com/folke/lazy.nvim.git in the lazy.nvim bootstrap and curl to https://raw.githubusercontent.com/junegunn/vim-plug/master/plug.vim (and the Homebrew installer https://raw.githubusercontent.com/Homebrew/install/HEAD/install.sh) which would download and execute external code that controls plugin/config installation.