configure-ecc

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly clones a public GitHub repository (Step 0: git clone https://github.com/affaan-m/everything-claude-code.git to /tmp) and then reads and acts on those repo files (copying skills/rules, scanning/editing installed SKILL.md and hooks in Steps 2–5), so untrusted third‑party content from the open web can be interpreted and can materially change installation/behavior.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill explicitly runs "git clone https://github.com/affaan-m/everything-claude-code.git" at runtime to fetch the ECC repo—which contains SKILL.md files (agent prompts/instructions) and stated hooks/scripts that are copied/used by the installer—so remote content directly controls agent behavior and is a required dependency.