interview-master

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill runs analysis scripts (e.g., scripts/analyze-commits.sh, scripts/extract-tech-stack.sh, and scripts/generate-resume-data.sh) that read and parse arbitrary git repositories or user-supplied repo paths and then ingest commit messages and file contents (user-generated, public/untrusted content) as part of generating resume and interview outputs, which could enable indirect prompt injection.