auth0-flask

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's automated setup (references/setup.md) explicitly downloads and executes a public install script via curl from raw.githubusercontent.com and uses the Auth0 CLI (auth0 apps show / create) to fetch tenant metadata (domain, client_id, etc.) from the public Auth0 service and inject those values into .env — i.e., it ingests and acts on untrusted third‑party content that can influence subsequent tool actions and configuration.