nv-design

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly requires reading and extracting design systems from downloaded HTML reference sites and user-provided reference files (see SKILL.md Phase 0 "References & Assets" and references/extract-design-system.md which instructs "You are given a reference website HTML" and to "Read the user's HTML file"), so it ingests arbitrary public/third‑party webpages whose content will directly determine generated code and actions.