blueprint-development

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's REFERENCE.md Work Order Command explicitly supports a "--from-issue N" mode that "Fetches issue #123" from GitHub (user-generated, potentially public content) and uses that issue content to create work-orders and decide next actions, so it ingests untrusted third-party material that can influence tool use.