cnb-issue

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's CLI and module (scripts/cnb-client.js) call the public CNB API (SWAGGER_URL https://api.cnb.cool) to fetch issue bodies and comments (user-generated content) and the SKILL.md workflow explicitly instructs the agent to list/read issues and comments and then take actions (create/update/assign/label), so untrusted third‑party content could influence subsequent tool use.