js-deps

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly reads package.json files, lockfiles, and package-manager/audit/outdated output from registries and repo manifests (see SKILL.md step 4 and references/audit-workflow.md), which are untrusted third-party sources and are used to decide fixes/installs and subsequent actions like commits/PRs.