uv-python

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly instructs the agent to add and run dependencies (e.g., "Add dep: uv add ", PEP 723 "dependencies = [...]", and "uv run ..."), which implies fetching and installing third-party packages from public package indexes (untrusted user-contributed code) that the agent would execute and that could influence behavior.