designing-frontend

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill's SHADCN workflow (references/SHADCN.md) explicitly directs the agent to fetch and read demo/usage code from public registries (e.g., mcp__shadcn__get_item_examples_from_registries, mcp__shadcn__view_items_in_registries for registries like "@shadcn"), which are untrusted third‑party sources whose content is used to drive implementation decisions and commands.