awesome-design-md

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). SKILL.md explicitly instructs running "npx --yes getdesign@latest add " to fetch a DESIGN.md from the public VoltAgent repository/website (https://github.com/VoltAgent/awesome-design-md, https://getdesign.md) and then tells the coding agent to "Use DESIGN.md as the source of truth," so externally fetched third-party content is read and can directly influence agent decisions.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill instructs runtime execution of a remote npm package via "npx --yes getdesign@latest" which fetches and runs external code and installs DESIGN.md that the agent is told to treat as authoritative (repository: https://github.com/VoltAgent/awesome-design-md, docs: https://getdesign.md), so the fetched content can directly control prompts and is a required dependency.