gitops-workflow

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill instructs fetching and executing content from public third-party sources—e.g., installing ArgoCD from https://raw.githubusercontent.com, running the Flux install script at https://fluxcd.io/install.sh, and configuring ArgoCD/Flux to pull manifests from public GitHub repos (repoURL: https://github.com/org/...), which are untrusted user-controlled sources the agent/operator would ingest and act on.