jira-write-ticket

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow explicitly tells the agent to "find and scan the necessary code" and convert code locations to GitHub permalinks and to use the jira-read-ticket skill to fetch and summarize referenced Jira tickets, which means it ingests untrusted third-party content (GitHub/Jira) that can materially influence subsequent outputs.