find-skills

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly searches, lists, and installs community skills from public GitHub repositories and the public skills registry, which requires the agent to fetch and read arbitrary user-generated SKILL.md and repo content from untrusted third-party sources.