gh-complete

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt contains examples that embed tokens inline (e.g., "GH_TOKEN=xxx gh api /user") and commands that print tokens ("gh auth token"), which would require including secret values verbatim in commands or outputs, creating exfiltration risk.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill's SKILL.md documents using the GitHub CLI and APIs (e.g., gh api, gh pr view, gh issue view, gh gist list) to fetch and act on public GitHub repository/PR/issue/gist content, which is user-generated and could contain instructions that materially influence actions.