using-git-worktrees

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required "Run Project Setup" steps (e.g., npm install, pip install -r requirements.txt, cargo build, go mod download) fetch and execute packages from public package registries (untrusted third-party, user-published content) whose code/output can affect tests and thus materially influence the agent's subsequent decisions and actions.