gh-search-repos

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill performs searches across public GitHub and may ingest user-generated repository content (repository descriptions, README files, and other metadata via "match readme", description, url, etc.), exposing the agent to untrusted third‑party content.