triage

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow explicitly instructs the agent to "read the issue in the question and any linked issues/code/resources" and to search/fetch duplicates from the public EF Core GitHub repo (https://github.com/dotnet/efcore), meaning it ingests untrusted, user-generated third‑party content which directly influences triage decisions and subsequent actions.