cspell

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly instructs the agent to fetch cspell syntax, config schema, and available dictionaries at runtime from Context7 (/streetsidesoftware/cspell) with a public fallback to cspell.org, meaning it ingests and acts on untrusted third‑party content that can materially influence config and subsequent tool actions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.70). The skill explicitly directs runtime queries to Context7 (/streetsidesoftware/cspell) — with a fallback to https://cspell.org/configuration/ — to fetch cspell schema and init options that are used to drive prompts and initialization flags, so external content directly controls agent instructions at runtime.