otel-go

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md "Sources of Truth" explicitly instructs the agent to fetch public third‑party content (e.g., GitHub API calls and WebFetch to raw.githubusercontent.com and pkg.go.dev) to obtain releases and changelogs, so the agent will read untrusted public content that can influence version/configuration decisions.