ai-dev-tools-sync

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill's Step 2 "Research Latest Features" and the "Sources" section explicitly instruct the agent to search and read public web resources (e.g., docs.github.com and public GitHub repositories like "Awesome Copilot"), which are open third-party sources the agent would read and could carry untrusted/user-generated content.