brainstorm-solutions

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md explicitly allows fetching GitHub issues with "gh issue view $ARG --comments", which pulls untrusted, user-generated content into the agent's research context that the agent is expected to read and use to influence solution generation.