readthedocs-project-manager

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill calls the Read the Docs API (e.g., GET /api/v3/remote/repositories/ and projects/{slug}/builds/ against app.readthedocs.org or .com) and ingests project/repository/version/build metadata from public RTD instances, which can be user-generated/untrusted content the agent would read and act on.