git-workflow

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly recommends and instructs use of GitHub/Gitee MCPs (see AGENTS.md and SKILL.md) to create and review Issues/PRs and manage remote repositories on github.com and gitee.com, which requires fetching and interpreting user-generated, public third-party content and could therefore enable indirect prompt injection.