shadcn-guide

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's docs and workflow explicitly instruct the CLI to fetch and install components from public community registries and external endpoints (e.g., "registries" in references/configuration.md like https://v0.dev/chat/b/{name}, ui.shadcn.com/docs/registry, and the "Open in v0" endpoint), meaning the agent will ingest untrusted third-party registry items as part of its install/view/search workflow.