vitepress-skilld

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's documentation explicitly instructs VitePress data loaders and CMS integration to fetch and ingest arbitrary remote content (see references/docs/en/guide/data-loading.md and references/docs/en/guide/cms.md which show examples like fetch('https://my-cms-api') and createContentLoader), meaning untrusted, user-provided web content can be loaded and rendered as part of the site's workflow and could therefore influence routing, rendering, or subsequent actions.