dhis2-app-development

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly requires cloning and reading the public DHIS2 source from GitHub (e.g., "npx opensrc dhis2/dhis2-core --modify" in references/data-fetching.md) and using remote DHIS2 instances (e.g. play.im.dhis2.org) as mandatory parts of its workflow, meaning untrusted third‑party content is ingested and can materially influence the agent's subsequent decisions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The skill explicitly requires runtime cloning/fetching of external repositories using commands like "npx opensrc dhis2/dhis2-core --modify" (and versioned variants such as "npx opensrc dhis2/dhis2-core#2.41" and "npx opensrc dhis2/ui#v10.12.13"), which fetch remote code during runtime and instruct the agent to read/inject that source to determine API contracts and drive subsequent prompts/instructions.