github-skills-manager

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The dashboard explicitly runs git pull / "Sync" from GitHub repositories ("Sync All" and "Git Integration" -> "Sync: Pull latest changes from GitHub") and installs skills from those repos into the workspace, meaning the agent will fetch and load public/user-generated content from third‑party sources.