dependency-scanning

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's workflow explicitly instructs the agent to fetch and interpret public third‑party data (e.g., querying the FIRST EPSS API and the CISA KEV JSON feed, and checking package registry metadata on npmjs.org / pypi.org / crates.io) as part of vulnerability triage and remediation prioritization, so untrusted external content can materially influence decisions.