github-issues

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md explicitly instructs the agent to read and use GitHub issue bodies, comments, project items and search results via MCP tools (e.g., mcp__github__issue_read, mcp__github__search_issues) and gh api, which pulls untrusted, user-generated content from public GitHub repositories that can influence subsequent actions.