domo-da-cli

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly documents fetching arbitrary public templates (e.g., "da new my-app --template github.com/user/repo") which causes the CLI to ingest third‑party, user‑generated repository content that the tool will incorporate into project scaffolding and thus can influence subsequent actions and decisions.