midnight-infra-setup

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow explicitly clones and uses public GitHub repositories (e.g., SKILL.md git clone commands for midnight-infra-dev-tools, midnight-node, midnight-indexer, midnight-ledger) and then reads/builds/executes files from those repos (e.g., grep on midnight-node/Cargo.toml, ./scripts/update-metadata.sh), so it ingests untrusted third-party content that can materially change actions.