mastra-smoke-test

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill's required test workflow and scripts explicitly fetch and process content from public, potentially user-controlled endpoints—e.g., curl calls to deployed Studio/Server URLs and the mobs-query endpoints in references/tests/*.md and the scripts/test-server.sh, plus browser-agent testing (Stagehand) that browses the web—so untrusted third-party responses are ingested and used to decide test outcomes.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.70). The skill's setup and deploy steps instruct running "pnpx mastra@latest" (which fetches and executes remote code from the npm registry at runtime), making it a required external dependency that executes remote code and thus a potential risk if the fetched package is malicious or compromised.