lpm-guide

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). This skill explicitly instructs the agent to scan public GitHub/GitLab issues and extract recurring bug workarounds and FAQs (see sections/skills.md, Step 1b "Scan GitHub/GitLab Issues (Best-Effort)"), which means it will fetch and ingest untrusted, user-generated content that can directly shape generated Agent Skills and subsequent agent behavior.