js-security-audit

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's workflow explicitly tells the agent to consult public package metadata and registries (e.g., "check npmjs.com", run commands like npm view, npx npq, npm explain, and use tools like Socket.dev/Snyk) and to base install/CI decisions on that information, which are untrusted, user-maintained third‑party sources whose content can materially influence tool use and next actions.