homebrew

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). Yes — the SKILL.md explicitly instructs interacting with public third-party sources (e.g., "brew create https://example.com/package.tar.gz" and "TAP: Third-party formula repositories" / brew tap homebrew/cask-versions), which causes the agent to fetch and ingest untrusted repository/formula/source content that can materially change install/build behavior.