upgrade

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required upgrade workflow (bash "$PLUGIN_DIR/scripts/kokoro-install.sh" --upgrade) explicitly re-downloads model weights from the public "mlx-community/Kokoro-82M-bf16" repository and upgrades Python packages from public package sources, i.e., untrusted third‑party content that the agent will load and which could materially change behavior.