pp-flight-goat

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly drives searches of public third‑party sites (e.g., "Search Google Flights, scan Kayak long‑haul routes" in SKILL.md and example commands like gf-search / cheapest-longhaul and other --agent calls), and the agent is expected to ingest and act on those live results as part of its workflow, so untrusted public web content can influence subsequent tool use and decisions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill includes installation commands that fetch and execute remote code required at runtime—specifically the Go module URL (go install github.com/mvanhorn/printing-press-library/library/travel/flight-goat/cmd/flight-goat-pp-cli@latest) and the npx installer (@mvanhorn/printing-press) which will download and run remote installer code, so these external sources can execute code the agent depends on.