nav-sync-claude

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The updater explicitly fetches a CLAUDE.md template from a public GitHub raw URL (see functions/claude_updater.py -> fetch_template_from_github / get_template_path using https://raw.githubusercontent.com/...), and that remote template is parsed and used to generate the project's CLAUDE.md (which affects agent workflow), so untrusted third‑party content can influence agent behavior.