gsd-update

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required update workflow explicitly performs "npm version checking" and "changelog fetching and extraction" (see the and objective), which pulls public content from the npm registry and upstream changelogs and has the agent read/interpret that third-party content as part of deciding and executing updates.