ez-github

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's CLI (scripts/gh_trending.py) directly queries the public GitHub API (GH_API = "https://api.github.com") and ingests user-generated repo metadata, descriptions, release notes and topics as part of its required workflows, so untrusted third‑party content is read and can influence agent outputs/decisions.