integration-tests

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required workflow runs "pnpm i" (which fetches packages from the public npm registry) and mandates capturing stdout/stderr from "pnpm test:integration", so it deterministically ingests untrusted third-party package content and logs that could embed instructions and influence subsequent actions.