agent-sync-coordinator

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill calls GitHub APIs and CLI (e.g., mcp__github__get_file_contents, mcp__github__search_repositories and Bash "gh api repos/:owner/:repo.../contents/...") to fetch and read repository files, which are user-generated/public third‑party content that the agent ingests and acts on.