ai-ready

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill's required workflow (Steps 1–3 in SKILL.md) directs the user to add and then reload a third‑party GitHub skill (johnpapa/ai-ready) via "/skills add" and then invoke it, meaning the agent would subsequently load and execute instructions from an untrusted public repository on GitHub.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill instructs the user to run "/skills add johnpapa/ai-ready", which fetches and installs remote code from https://github.com/johnpapa/ai-ready that will then be executed/used to control agent prompts and behavior, so this external repo is a runtime dependency that can change instructions.