asc-plugin-release

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly clones and reads/updates the public GitHub repository https://github.com/tddworks/asc-registry (Step 5) and verifies it via raw.githubusercontent.com (Step 8), so it ingests untrusted third‑party registry.json content which the agent must interpret to decide whether to add/replace entries and how to proceed.