gitkraken-cli

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's workflow explicitly uses gk commands that fetch and act on remote, user-generated repository and issue-tracker content (e.g., "gk issue list " and the "gk work"/"gk ai" commands that operate across GitHub/GitLab/Jira-linked repos), meaning the agent will ingest untrusted third-party content that can influence subsequent actions.