ship-page

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's workflow explicitly includes "Mode B: README Conversion" and a Phase 1 content option "Pull from my README" in SKILL.md, indicating the agent will fetch and parse public/user-generated README content (e.g., GitHub) and use that extracted text to drive page-generation decisions, which exposes it to untrusted third‑party content.