angular-upgrade

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). Yes — the skill's required workflow (Step 2) instructs visiting the public Angular update guides (https://angular.dev/update-guide or https://update.angular.io) and Step 6 requires checking third-party changelogs/npm pages, meaning the agent must fetch and interpret external, user-maintained web content that can influence upgrade decisions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill explicitly instructs the agent at runtime to fetch and summarize the Angular update guide from https://angular.dev/update-guide?v={current}.0-{target}.0&l=3 (and for older versions https://update.angular.io/?v={current}.0-{target}.0&l=3), so external content would directly influence the agent's instructions and decision-making during execution.