github-contributor

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). Yes — SKILL.md explicitly instructs running GitHub CLI commands (e.g., "gh search issues", "gh repo view", "gh pr list" and the "Check recent activity" / "Check issue activity" steps) to read public issues, PRs, and comments from GitHub (untrusted, user-generated content) as part of the required workflow, and those third-party contents can materially influence project selection and follow-up actions.