update-npm-deps

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's Phase 4 "Research Breaking Changes" in SKILL.md explicitly instructs the agent to perform WebSearch/WebFetch against public sources (e.g., GitHub releases, official docs, changelogs, and GitHub issues) and to extract/interpret migration docs, which are untrusted third‑party content that can materially change upgrade actions.