piter-setup

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill explicitly ingests GitHub Issues as prompt input (see "GitHub Issues Setup" and the cron/webhook trigger scripts) which are untrusted, user-generated third-party content that the agent reads and acts on (classification and running ADW), enabling indirect prompt injection.