vhscli

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly documents nano-banana-2 flags (--search, --image-search) that cause the CLI to use Google search during generation and the nano-banana prompt guide (prompt_guide/nano-banana.txt) instructs web-grounded retrieval, so the agent is expected to ingest and act on untrusted public web content that can change generation behavior.