cors-cross-origin-misconfiguration

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). This content contains explicit, actionable exploit instructions and code for exfiltrating authenticated user data (JSONP hijacking, reflected-origin CORS bypasses, null-origin/sandbox tricks, watering‑hole attacks and attacker endpoints), indicating deliberate malicious intent and high-risk abuse.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's SCENARIOS.md explicitly instructs loading and executing JSONP/script tags from public sites (e.g., , weibo.com, github.com and other target URLs) as part of watering‑hole/JSONP hijacking and honeypot scenarios, so it clearly ingests untrusted third‑party web content that could carry injected instructions.