sync-plugin-skills

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly pulls and ingests SKILL.md and other files from the public GitHub repo github.com/Michailbul/laniameda-skills (see "Step 1 — Pull Latest from GitHub" and the build script that copies SKILL.md into the plugin), so externally authored repository content is read and incorporated into the plugin and can change agent behavior.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The skill explicitly runs git pull against the canonical repo (github.com/Michailbul/laniameda-skills) at runtime and uses the fetched SKILL.md files to rebuild the plugin, so remote content from that URL directly controls agent prompts and is a required dependency.