vchart-development-assistant

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly supports "Figma 设计稿模式" (users can provide Figma design links) and states the assistant will extract precise style values from those links, and it also allows consulting online resources (e.g., visactor.com, GitHub, issues) when local knowledge is insufficient—so the agent is expected to fetch and interpret untrusted public third‑party content that can directly influence generated specs and actions.