finops-compare

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's scripts (scripts/compare-repos.sh) call the GitHub CLI and gh api endpoints (e.g., /repos/$ORG/$repo/actions/cache/usage and /repos/$ORG/$repo/actions/runs) to fetch public repository and workflow run data—untrusted, user-generated content—which the agent ingests and uses to drive summaries and follow-up actions, so third-party content can materially influence behavior.