frontend-debug

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill explicitly fetches and parses GitHub issue bodies (see github-issue-handler.rb and AcceptanceCriteriaHandler.parse_github_issue / SKILL.md --start --issue examples) and uses extracted "Acceptance Criteria" to drive the debug-loop's verification and control flow, meaning untrusted, user-generated issue text can materially influence the agent's actions.