stitch-svelte-components

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md workflow (Step 1 and Step 3) requires calling [prefix]:get_screen and downloading arbitrary HTML via scripts/fetch-stitch.sh using htmlCode.downloadUrl (and inspecting screenshot.downloadUrl), so the agent ingests external/user-provided web content that will be parsed and used to drive code-generation decisions, creating a real vector for indirect prompt injection.