ln-822-nuget-upgrader

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly instructs the runtime to fetch missing shared files via WebFetch from a public GitHub raw URL (https://raw.githubusercontent.com/levnikolaevich/claude-code-skills/master/skills/{path}) and requires loading shared/references/coordinator_summary_contract.md and also recommends using WebSearch for migration guides, so it will read and act on untrusted public web content that can influence upgrade decisions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill explicitly says that if shared/ is missing it will fetch files at runtime from https://raw.githubusercontent.com/levnikolaevich/claude-code-skills/master/skills/{path}, and those fetched shared files (e.g., the required coordinator_summary_contract.md) are read to control output formatting/instructions, so remote content can directly influence agent prompts/behavior.