banana-skill-finder

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly fetches and parses content from public third‑party sources — SkillsMP API, skills.sh via WebFetch, and the GitHub API (including reading SKILL.md files and repositories) — so the agent will read and act on untrusted, user-generated web content.