hive-mind-advanced

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md explicitly describes GitHub integration and runtime flows that analyze public repositories and review PRs (e.g., "hive-mind spawn 'Analyze repo quality' --objective 'owner$repo'" and "spawn 'Review PR #456'"), which requires fetching and interpreting untrusted, user-generated content from external GitHub sources that can materially influence agent decisions and actions.