wind-find-finance-skill

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow (SKILL.md step 2) runs its update-check scripts (scripts/update-check.mjs / scripts/check-updates.mjs) which fetch public GitHub/Gitee repo trees and commit data via the GitHub/Gitee APIs (e.g., https://api.github.com / https://gitee.com/api/v5) and then interprets that remote data (printing upgrade commands and influencing install/source choice and notifications), so it clearly ingests untrusted third‑party content that can materially change subsequent installation/actions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill requires executing installation commands at runtime that fetch and run code from remote git repositories—e.g. "npx skills add Wind-Information-Co-Ltd/wind-skills" (GitHub) or "npx skills add https://gitee.com/wind_info/wind-skills.git" (Gitee)—so external repo content is fetched and executed as a required dependency.