claude-plugins

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.75). The validate-plugin.nu script (setup-external-plugin in scripts/validate-plugin.nu) explicitly clones external GitHub repositories (e.g., via git clone of "https://github.com/...") and then opens and parses those repos' plugin.json, SKILL.md, and agent .md files as part of its validation workflow, which exposes the agent to untrusted public third‑party content that can influence validation results and subsequent actions.