farm-monitor

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill ingests public GitHub repository content (e.g., "GitHub Source: Documentation extracted from repository README" and files like references/issues.md which list recent GitHub issues and discussions), meaning it consumes untrusted, user-generated third‑party content that the agent is expected to read as part of its workflow.