vue

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill clearly pulls in open/public third-party content — the .dev/reference-inventory.json lists raw.githubusercontent.com Vue documentation URLs that are included as references in SKILL.md and are intended to be read and used to guide coding/review decisions, so external page content could influence the agent's actions.