nix

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The SKILL.md explicitly shows runtime commands that fetch and consume remote web content (e.g., "nix-prefetch-url --unpack https://example.com/source.tar.gz" and a shebang example using "curl -s https://example.com"), so the skill can ingest arbitrary public URLs whose content could influence builds or runtime actions.