auth0-swift

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md explicitly instructs the agent to run a GitHub API call (gh api repos/auth0/Auth0.swift/releases/latest --jq '.tag_name') to fetch a public release tag from GitHub and then use that returned value in dependency/version lines, so open/public third‑party content is ingested and directly influences tool actions and decisions.