33GOD System Expert

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's "GitHub Search Integration" explicitly instructs the agent to search and extract patterns from public GitHub repositories (open web, user-generated content), which the agent will read and interpret as part of its workflow, exposing it to untrusted third-party content and potential indirect prompt injection.