gitops-workflow

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill instructs fetching and applying manifests and scripts from public third-party sources—e.g., kubectl apply -f https://raw.githubusercontent.com/argoproj/argo-cd/stable/manifests/install.yaml, curl -s https://fluxcd.io/install.sh, and ArgoCD/Flux repoURL examples pointing to https://github.com/...—so the agent/agents in the workflow will ingest and act on untrusted, user-controlled GitHub/website content.