templates-skills

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md files explicitly instruct cloning/downloading public repositories and web resources (e.g., arxiv-preprint-template: "git clone https://github.com/kourgeorge/arxiv-style.git"; scientific-article-pdf: wget links and "Obtain Official Templates"), so the workflow entails fetching and using untrusted, user-generated third‑party content that the agent/user is expected to read/compile/run and which could influence subsequent actions.