braiins-os

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill ingests and surfaces content scraped from public third‑party sources — notably multiple GitHub repositories and issues (e.g., github.com/braiins/bos-plus-api, bos-plus-api-issues.md) and public Braiins Academy pages — which are untrusted/user-generated and are read/interpreted by the agent as part of its workflow.