awesome-ai-security-overview

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's "Data Source" section explicitly instructs the agent to fetch the README from the public raw GitHub URL (https://raw.githubusercontent.com/gmh5225/awesome-ai-security/refs/heads/main/README.md), a third‑party, user-maintained resource the agent is expected to read and use to decide on link additions, so external content could influence its actions.