awesome-claude-code-curation

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly instructs the agent to fetch and load content from the public GitHub repository (see "Finding and Using Resources" — the search_awesome_claude_code example using the GitHub API and the "Installing a Skill" git clone instructions), which pulls untrusted, user-generated third-party content that the agent would read and combine into workflows, so external instructions could materially influence actions.