deep-dive-research-orchestrator

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.70). These are GitHub pages and a third‑party skills registry referenced by installation commands that would run code from several non‑mainstream GitHub accounts via npx — the links themselves are not direct executables but installing/running the referenced packages from unverified authors (and an unfamiliar skills.sh registry) poses a meaningful risk unless you verify the repos, review the code, and confirm maintainers and popularity.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.95). The workflow performs runtime web research via the required dependency skills (e.g., competitor-intel/financial-deep-research using WebFetch/WebSearch), which ingests outsider-authored free text from fetched public pages into the agents’ LLM context for synthesis.