github-copilot-agent-tips-and-tricks

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly instructs using the GitHub CLI (e.g., "gh pr list", "gh pr view", "gh pr checkout") to fetch and read pull request descriptions, diffs, and commit messages from GitHub repositories (public/user-generated content), which the agent would interpret as part of its review workflow and could influence actions.