pd-github-file

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill's SKILL.md explicitly instructs reading arbitrary GitHub repository files via "npx tsx resources/pd-github.ts file --repo <OWNER/REPO> --path ", which fetches public, user-generated content from untrusted third-party sources that the agent is expected to read and could influence subsequent actions.