security-ownership-map

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill runs git on a user-specified repository (see run_git_log in scripts/build_ownership_map.py / scripts/run_ownership_map.py which invoke "git -C log" and parse commit metadata and file paths), thereby ingesting untrusted, user-generated repository content (commits, file paths, messages, authors) as part of its analysis.