context7-query-docs

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly says the "query-docs" tool "Retrieves and queries up-to-date documentation and code examples from Context7" (a third-party public docs source) and requires the agent to read/interpret those external docs by libraryId as part of its workflow, so untrusted third-party content could supply instructions that affect subsequent actions.