dependabit-bootstrap

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The workflow templates (assets/dependabit-generate.yml / dependabit-update.yml) invoke the pradeepmouli/dependabit action and the config (assets/config.yml) explicitly lists external dependency URLs (e.g., "https://github.com/important/repo", "https://stable-docs.example.com"), showing the tool will fetch and analyze public/untrusted third‑party webpages/docs and use that content (via LLM analysis) to update manifests and create issues, which can materially influence behavior.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The workflows invoke the external GitHub Action pradeepmouli/dependabit (https://github.com/pradeepmouli/dependabit via uses: pradeepmouli/dependabit@v1 or @main), which is fetched and executed at workflow runtime and is required for manifest generation/update, so it constitutes a runtime external dependency that executes remote code.