dep-audit

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill runs ecosystem audit tools (scripts/audit-npm.sh, audit-pip.sh, audit-cargo.sh, audit-go.sh) which query public advisory databases (e.g., npm registry, OSV, GitHub Advisory DB/RustSec, vuln.go.dev as documented in SECURITY.md) and the agent parses those external results (and derived fix_command fields) as part of its required workflow (detect → audit → aggregate → present/fix), so untrusted third‑party advisory content can materially influence reported actions.