ai-dev-tools-sync

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's Step 2 "Research — Search for latest features across both platforms" in SKILL.md explicitly directs the agent to search the web (e.g., "Search web for: 'GitHub Copilot features setup 2026'") and the references files cite external docs, meaning the agent is expected to fetch and interpret untrusted public web content that could influence actions.