npm-package-comparator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's required "Step 2 — Parallel data fetch" explicitly instructs agents to fetch and scrape live pages from public third-party sites (npmjs.com, github.com, bundlephobia.com, security.snyk.io), which the agent must read and interpret to drive recommendations, exposing it to untrusted user-generated web content that could contain malicious instructions.