architect-pro

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly instructs agents to fetch and pack remote public repositories via Repomix (see "Repository Analysis with Repomix" and the "npx repomix@latest --remote <owner/repo>" / "Remote Repository Analysis" examples), meaning it ingests arbitrary third‑party user-generated code that could contain malicious or instructive content.