plugin-dev

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly supports adding/installing external marketplaces and plugins from public sources (see SKILL.md and references/marketplace-schema.md "Source Formats" and distribution.md's "/plugin marketplace add" plus "All sources are cached...") and Claude Code auto-discovers and executes plugin components (skills/*/SKILL.md, agents, hooks), so untrusted user-generated repository content can be ingested and influence agent behavior.