clawdbot-skill-update

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). This skill's update workflow explicitly runs check-upstream.sh (in SKILL.md / UPDATE_CHECKLIST.md), which does git fetch from the public GitHub remote (origin) and displays commit messages and diffs from that untrusted, user-controlled repository — content the agent/operator is expected to read and that can materially influence whether to pull, build, and run updates.