sparkle-mac

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly requires and documents loading appcast feeds and release notes from SUFeedURL and releaseNotesLink (see SKILL.md and references/customization.md / references/publishing.md), which causes the updater to fetch and interpret arbitrary public URLs (including HTML/JS and server-side scripts used for system profiling), so untrusted third-party content can influence update decisions and behavior.