component-search

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly fetches and interprets content from the public 21st.dev registry (see "Step 1: Search Registry" fallback which uses WebSearch("site:21st.dev {QUERY}") and WebFetch("https://21st.dev")), and it reads component source, install commands, and metadata as part of its workflow—exposing the agent to untrusted third-party content that could contain instructive or malicious payloads.