pre-commit

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's workflow explicitly requires fetching and running hooks from public repos (e.g., .pre-commit-config.yaml "repos" entries like https://github.com/your-org/commit-polish and examples referencing GitHub/third‑party hook repos, and commands such as pre-commit try-repo / pre-commit install) which will download and execute untrusted, user/third‑party code (including a prepare-commit-msg "commit-polish" hook that rewrites messages), so external content can be ingested and materially influence tool behavior.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill's examples show .pre-commit-config.yaml fetching and running hook code from external repositories at runtime (e.g., https://github.com/your-org/commit-polish), which pre-commit downloads and executes as hook entrypoints (prepare-commit-msg), so this is a runtime external dependency that executes remote code.