obsidian-plugin-shadcn-ui

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's CLI workflow explicitly fetches and inspects external registry items and arbitrary URLs (see references/cli.md: "add accepts URLs" and "docs ... Fetch the URLs to get the actual content" and guidance to use --view/--diff to review third-party registry code), so the agent will read untrusted public/web content that can influence installation/merge actions.