ant-to-shadcn-migration

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly enables an shadcn MCP server (see rules/setup-shadcn-mcp.md) so the agent can browse/search/install components from external shadcn/custom registries—i.e., it will fetch and interpret public third‑party registry content as part of its workflow, which could be untrusted.