military-commander

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required "情报" step (SKILL.v2.md, Step 2) explicitly instructs the agent to "搜索相关文档、Issues、最佳实践" and the resource section lists public GitHub links, which requires fetching and interpreting untrusted, user-generated third-party content that can materially influence decisions.