github-agentic-workflows

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's "Tools and MCP Integration" section mandates use of "web-search" or "web-fetch" for external information and the Slash Command example explicitly instructs searching Stack Overflow and other repositories, so the agent will fetch and interpret untrusted third-party web content that can influence its actions.