monorepo-navigator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md "Migration: Multi-Repo → Monorepo" workflow explicitly instructs cloning remote repositories (e.g., git clone https://github.com/myorg/web-app) and then analyzing/merging them, meaning the agent will fetch and read arbitrary user-generated GitHub repo content (package.json, CLAUDE.md, READMEs, code) that could contain instructions influencing analysis, build, or other actions.