prd-to-issues

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow step instructs the agent to fetch and read a PRD from a GitHub issue using "gh issue view " (including comments), which pulls untrusted, user-generated content from public third-party pages that the agent must interpret and act on to create issues.