docker-to-sealos

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly requires the agent to load and merge "official Kubernetes installation docs/manifests" and external gitRepo/icon URLs (see Step 1 Analyze input and Step 4 / "Official Kubernetes alignment" in SKILL.md), i.e. reading public third‑party sources (e.g., public GitHub/raw URLs) and using that content to drive conversion decisions and emitted artifacts.