upgrading-expo

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md workflow explicitly instructs the agent to check public Expo endpoints (e.g., "Check if latest is beta: https://exp.host/--/api/v2/versions" and review release notes at https://expo.dev/changelog), so the agent would fetch and interpret third-party web content which can change upgrade decisions/commands.