deploy-taubyte-spore-drive

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly requires cloning and running a public GitHub repository (step 1: "git clone https://github.com/taubyte/spore-drive-boilerplate.git") and states that DNS logic is "Derived from fixDNS" in src/index.ts, meaning the agent/user will fetch and interpret untrusted third‑party code whose contents can change deployment actions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill instructs the operator to clone and run code from an external Git repository (git clone https://github.com/taubyte/spore-drive-boilerplate.git followed by npm install and npm run displace), which fetches remote code that will be executed locally, so the repository URL is a runtime dependency that can execute code.