planning-sprints

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill explicitly fetches and processes user-generated GitHub content (e.g., "gh issue list" and GitHub project/board operations shown in "How to Use This Skill" and the Examples in SKILL.md), and uses that untrusted third‑party content to prioritize issues and drive actions (create boards, delegate tasks), so external content can materially influence decisions and tool use.