searching-packages

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required workflow explicitly runs "robomotion docs " to read a package's llms.txt (package docs) and states that reading non-Core.* package docs is MANDATORY because those docs carry auth patterns and gotchas, so arbitrary package-authored content could be ingested and influence agent decisions.