homebrew-publish

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly requires and fetches arbitrary public source/prebuilt URLs (see SKILL.md steps "Gather inputs" for source tarball/prebuilt asset URLs and step 5's "curl -L | shasum -a 256"), so untrusted third‑party content would be ingested and could influence formula creation and subsequent tooling decisions.