learning-graph-generator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow (Step 0 and Step 1 in SKILL.md) explicitly tells the agent to clone a public GitHub repo (git clone https://github.com/dmccreary/intelligent-book-template) if local docs are missing and then to read and analyze the course-description.md (../course-description.md), so it can fetch and interpret untrusted third‑party content from the open web which directly drives generation and tool actions.