dependency-reuse-first

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md and references/ecosystem-sources.md explicitly require the agent to consult public package registries and code hosts (e.g., npm, PyPI, GitHub, Maven Central, crates.io, NuGet), which are open/public, user-contributed sources the agent must read and use to make dependency decisions.