pm-context

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's adapters (adapters/github.md, adapters/jira.md, adapters/linear.md and the SKILL.md workflow) explicitly fetch and parse user-generated content from third-party PM services (e.g., gh issue view, jira issue view, linctl issue get) — including issue bodies, comments, and task lists — which the agent is expected to read and act on, so untrusted external content could influence subsequent tool use and decisions.