ai-llm-skills-guide

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs the agent to "use WebFetch to retrieve the full README.md" from a public raw.githubusercontent.com URL, meaning the agent will ingest untrusted, user-generated content from a third-party GitHub repo that could influence its actions.