sim-obliterator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The required SETUP step (scripts/setup.py) explicitly clones and installs the public GitHub repo https://github.com/DnfJeff/SimObliterator_Suite.git and then inserts its src/ on sys.path and imports/executes modules from it, so untrusted third‑party code/content is fetched and used at runtime and can materially change tool behavior.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill's setup script (scripts/setup.py) performs a runtime git clone from https://github.com/DnfJeff/SimObliterator_Suite.git and then creates a venv, installs dependencies, and imports Python modules from that repo, meaning remote code is fetched and executed and the skill requires that repository to function.