gitlab-release

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md explicitly instructs use of commands that fetch and display user-generated GitLab content (e.g., "glab release view", "glab release list", "glab mr list", "glab ci status"), which the agent is expected to read and use in workflows, exposing it to untrusted third-party content that could carry indirect prompt injection.