flutter-triage

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly downloads a public triage README from https://raw.githubusercontent.com/flutter/flutter/master/docs/triage/README.md and then converts extracted links to GitHub API calls (and parse_api_response.py fetches issue bodies and comments) — all user-generated, public content that the agent reads and uses to generate summaries and action items, so untrusted third‑party content can materially influence its behavior.