designing-frontend

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SHADCN.md workflow explicitly instructs the agent to query public component registries and fetch usage examples/demos (e.g., mcp__shadcn__get_item_examples_from_registries, view_items_in_registries) which are open third‑party sources whose content the agent is expected to read and act on (e.g., running add commands or using demo code), creating a clear vector for indirect prompt injection.