heroui-native

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's workflow explicitly instructs the agent to "Always fetch component docs before implementing" and includes scripts (scripts/get_component_docs.mjs, scripts/get_docs.mjs, scripts/get_theme.mjs, scripts/list_components.mjs) that fetch MDX/docs from public URLs (https://v3.heroui.com and https://native-mcp-api.heroui.com and a public llms.txt), meaning the agent will ingest and act on open/public third‑party content that can materially influence decisions and tool use.