agentic-workflow-orchestration

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly reads and acts on user-generated GitHub content (e.g., issue titles, bodies, comments, labels and repository listings) as part of its required workflows (see daily-orchestrator.md, issue-analyzer.md, issue-router.md and security-audit-orchestrator.md), so untrusted third-party content from public GitHub data can influence routing and orchestration decisions.