node

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly shows using npm and npx (e.g., "npm install -g typescript" and "npx create-react-app") which fetch and execute packages from the public npm registry (user-published, untrusted third‑party code) and thus can inject runtime instructions that influence agent behavior.