using-bitrise-ci

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly instructs the agent to use public Bitrise resources (e.g., the Step Library at https://github.com/bitrise-steplib, the /search-steps and /step-inputs endpoints, and reading bitrise.yml from public git repositories) to fetch step definitions and configuration which are untrusted/user-generated content the agent is expected to read and that can materially change workflow/tool behavior.