metabase-modular-embedding-to-modular-embedding-sdk-upgrade

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill explicitly downloads and reads third-party files (it runs npm pack in scripts/prepare.sh to fetch the @metabase/embedding-sdk-react package and its d.ts, and fetches versioned docs from https://www.metabase.com/docs/v0.{VERSION}/llms-embedding-full.txt as described in SKILL.md), and then directly loads and interprets those files to build migration mappings and drive code changes—so public, external content is ingested and can influence agent actions.