moai-foundation-git

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's required workflow and examples explicitly instruct reading PRs, review comments and CI/workflow outputs from GitHub (e.g., "gh pr view 123", the PR URL https://github.com/org/repo/pull/42, "gh run view" and related steps in SKILL.md/reference.md), which are untrusted, user‑generated third‑party content that the agent would interpret to decide merges and next actions.