uv-package-manager

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly includes runtime commands that fetch and install content from public third-party sources (e.g., "curl -LsSf https://astral.sh/uv/install.sh | sh" in Installation and "uv add git+https://github.com/user/repo.git" in Adding Dependencies), which are untrusted/user-generated sources the tool will ingest and act on as part of its workflow and thus could carry indirect instruction injection.