groove-utilities-task-doctor

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's required workflow explicitly runs backend read operations (step 6: "beans list --json", "linear: list one issue", "gh issue list --limit 1") which fetch user-generated content from third-party services (Beans/Linear/GitHub) that the agent must read/interpret to determine reachability, so untrusted content could influence decisions.