managing-commits

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly syncs and reads GitHub issues and repository data via the GitHub CLI (see scripts/issue-tracker.py and scripts/init-environment.py which fetch and cache issue titles/bodies to .claude/github-workflows/active-issues.json) and uses those untrusted, user-generated issue contents to suggest and automatically add issue references that can change commit messages and commit actions, allowing indirect prompt injection from third-party content.