supabase-clerk-sync

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill clearly ingests and displays untrusted, user-generated content from third parties — e.g., Clerk webhook payloads and API responses handled in examples/webhook-handler.ts, templates/edge-function-webhook.ts, and scripts/sync-users.sh (and the app front-end reading posts/profile data from Supabase) — so the agent would read/interpret external user content as part of its workflow.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill includes Edge Function/template imports that fetch and execute remote JavaScript modules at runtime (e.g., https://deno.land/std@0.168.0/http/server.ts and https://esm.sh/@supabase/supabase-js@2 and https://esm.sh/svix@1.4.1), which are runtime-fetched URLs that cause execution of remote code required for the webhook handler.