ce-compound

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's Related Docs Finder explicitly runs GitHub issue searches (e.g., "gh issue list --search """) and ingests those user-generated issue results as part of the research/overlap assessment that influences whether the agent updates or creates documentation, exposing it to untrusted third-party content from GitHub.