find-skills

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.75). The required workflow uses the Skills CLI to search/browse the open skills ecosystem (e.g., npx skills find [query] and then presenting install options), which at runtime can fetch and ingest public web content from skills.sh / GitHub skill metadata authored by third parties into the agent’s context.