oss

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill issues GitHub API/CLI calls and reads repository content (e.g., listing .github/ISSUE_TEMPLATE/, running gh issue list --search, and gh api graphql to fetch discussion categories and discussions) and explicitly analyzes titles/bodies/templates from those public issues/discussions/repo files, which are untrusted user-generated third-party content.