dd-file-issue

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's required "Check for Existing Issues" workflow explicitly runs gh issue list against the DataDog/pup and DataDog/datadog-api-claude-plugin GitHub repositories, meaning the agent will read user-generated, public GitHub issue content (untrusted third-party data) and use it to decide whether to file or comment, which can materially influence its next actions.