workos-authkit-react-router

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill's Phase 1 mandates a blocking WebFetch of the public GitHub README at https://github.com/workos/authkit-react-router/blob/main/README.md and directs the agent to treat that README as the "source of truth" used to drive implementation decisions, so untrusted third-party content is read and can materially influence actions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The skill performs a blocking WebFetch of the README at https://github.com/workos/authkit-react-router/blob/main/README.md and explicitly requires following that README as the "source of truth," so fetched remote content directly controls the agent's instructions at runtime.