find-skills

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs using the upstream Skills CLI (e.g., "npx skills find") and browsing https://skills.sh/ and linked repos (e.g., https://github.com/vercel-labs/skills) so the agent is expected to read and act on untrusted public skill descriptions and repositories.