unity-vrc-skills-renovator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md renovation workflow (Phase 2) and supporting files (references/search-queries.md and references/changelog-sources.md) explicitly instruct running WebSearch and ingesting public sources (creators.vrchat.com, feedback.vrchat.com, GitHub, Qiita, Twitter/X, ask.vrchat.com, etc.) and then using those results to drive updates to SKILL/rules/hooks/templates, so untrusted third‑party content can directly influence agent decisions and tool actions.