activator-authoring-cli

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md mandates a one-per-session "Update Check" that instructs the agent to fetch and compare the local package.json against a remote repo (via git fetch origin/main && git show origin/main:package.json or the GitHub API), which requires retrieving and interpreting remote (potentially user-generated/public) content that can change subsequent behavior (show changelog/update instructions).